CVE-2019-11359
NONE EPSS 61.4%
Published Apr 20, 20197y ago · Modified Jun 17, 20262w ago
Published Apr 20, 2019 7y ago
Last Modified Jun 17, 2026 2w ago
Description
Cross-site scripting (XSS) vulnerability in display.php in I, Librarian 4.10 allows remote attackers to inject arbitrary web script or HTML via the project parameter.
Threat Intelligence
EPSS Exploit Probability
61.4% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available
Weaknesses 1
CWE-79 Cross-site Scripting Injection
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| scilico | i\,_librarian | 4.10 | any |
References 1
- github.com https://github.com/mkucej/i-librarian/issues/138
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.