CVE-2019-12311

Sandline Centraleyezer (On Premises) allows Unrestricted File Upload leading to Stored XSS. An HTML page running a script could be uploaded to the server. When a victim tries to download a CISO Report template, the script is loaded. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt