Vulnerabilities > Intland > Codebeamer > 9.4.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-03-30 | CVE-2019-19913 | Cross-site Scripting vulnerability in Intland Codebeamer In Intland codeBeamer ALM 9.5 and earlier, there is stored XSS via the Trackers Title parameter. | 4.8 |
2020-03-30 | CVE-2019-19912 | Cross-site Scripting vulnerability in Intland Codebeamer In Intland codeBeamer ALM 9.5 and earlier, a cross-site scripting (XSS) vulnerability in the Upload Flash File feature allows authenticated remote attackers to inject arbitrary scripts via an active script embedded in an SWF file. | 4.8 |