Vulnerabilities > Sandline > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-18 | CVE-2019-12311 | Cross-site Scripting vulnerability in Sandline Centraleyezer Sandline Centraleyezer (On Premises) allows Unrestricted File Upload leading to Stored XSS. | 6.1 |
| 2019-11-18 | CVE-2019-12299 | Cross-site Scripting vulnerability in Sandline Centraleyezer Sandline Centraleyezer (On Premises) allows Stored XSS using HTML entities in the name field of the Category section. | 6.1 |