CVE-2019-13966

Published: 2020-02-14T22:15Z

Last Modified: 2024-11-21T04:25Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

In iTop through 2.6.0, an XSS payload can be delivered in certain fields (such as icon) of the XML file used to build the dashboard. This is similar to CVE-2015-6544 (which is only about the dashboard title). > MITRE Terms of Use apply – see LICENSE‑MITRE.txt