QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2019-13932

Back to search

CVE-2019-13932

Published: Dec 12, 2019

Modified: Aug 5, 2024

PUBLISHED

Description

A vulnerability has been identified in XHQ (All versions < V6.0.0.2). The web application requests could be manipulated, causing the the application to behave in unexpected ways for legitimate users. Successful exploitation does not require for an attacker to be authenticated. A successful attack could allow the import of scripts or generation of malicious links. This could allow the attacker to read or modify contents of the web application. At the time of advisory publication no public exploitation of this security vulnerability was known.

VendorProductVersions

Siemens AG

XHQ

affected
All versions < V6.0.0.2

Weaknesses (CWE)

CWE-20

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now