Unrated severityOSV Advisory· Published Jan 29, 2019· Updated Sep 17, 2024
CVE-2019-7172
CVE-2019-7172
Description
A stored-self XSS exists in ATutor through v2.2.4, allowing an attacker to execute HTML or JavaScript code in a vulnerable Real Name field to /mods/_core/users/admins/my_edit.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- github.com/atutor/ATutor/issues/164mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.