CVE-2019-13234

Published: Aug 27, 2019
Updated: May 9, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2019-13234" target="_blank" rel="noopener"> CVE-2019-13234
GHSA: <a href="https://github.com/advisories/GHSA-fxp8-7h5w-h235" target="_blank" rel="noopener"> GHSA-fxp8-7h5w-h235
Severity: Medium
Exploit:

In the Alkacon OpenCms Apollo Template 10.5.4 and 10.5.5, there is XSS in the search engine.

CVSS v3:

CVSS v2:

CWEs:

OWASP TOP 10:

Software	From	Fixed in
alkacon / opencms_apollo_template	10.5.4	10.5.4.x
alkacon / opencms_apollo_template	10.5.5	10.5.5.x
org.opencms / opencms-core	-	11.0.1