CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-18926

Systematic IRIS Standards Management (ISM) v2.1 SP1 89 is vulnerable to unauthenticated reflected Cross Site Scripting (XSS). A user input (related to dialog information) is reflected directly in the web page, allowing a malicious user to conduct a Cross Site Scripting attack against users of the application.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.0%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://github.com/vulnerabilities-cve/vulnerabilities
https://github.com/vulnerabilities-cve/vulnerabilities

Products affected by CVE-2019-18926

Systematicinc » Iris Standards Management » Version: 2.1

cpe:2.3:a:systematicinc:iris_standards_management:2.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-18926

Products

Pricing

Contact Us