← Back to CVE List

CVE-2019-8954

Published: 2019-02-20T17:29Z
Last Modified: 2024-11-21T04:50Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
In Indexhibit 2.1.5, remote attackers can execute arbitrary code via the v parameter (in conjunction with the id parameter) in a upd_jxcode=true action to the ndxzstudio/?a=system URI. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt