CVE ID:

CVE-2019-9961

Details:

A cross-site scripting (XSS) vulnerability in ressource view in core/modules/resource/RESOURCEVIEW.php in Wikindx prior to version 5.7.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter.

References:

:https://sourceforge.net/p/wikindx/code/2656/
:https://sourceforge.net/p/wikindx/code/2624/

ZeroDayLab Assigned Tags:

WEB BASED ATTACK
REMOTE
CROSS SITE SCRIPTING - What is Cross Site Scripting?
INJECTION ATTACK