CVEs-PoC/2019/CVE-2019-12834.md at 2ef066380cb36dba2e454190ca2349fcff6ca2df

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-24 11:44:02 +02:00

Files

T

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

725 B

Raw Blame History

CVE-2019-12834

Description

In HT2 Labs Learning Locker 3.15.1, it's possible to inject malicious HTML and JavaScript code into the DOM of the website via the PATH_INFO to the dashboards/ URI.

POC

Reference

https://github.com/miruser/Roche-CVEs/blob/master/CVE-2019-12834.md

Github

https://github.com/kiseru-io/clair-sec-scanner
https://github.com/rochesecurity/Roche-CVEs

725 B Raw Blame History

CVE-2019-12834

Description

POC

Reference

Github

725 B

Raw Blame History