CVE-2019-17433

Identifiers

GHSA-fcmh-7492-g4q9, CVE-2019-17433

Package Slug

packagist/encore/laravel-admin

Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Description

z-song laravel-admin 1.7.3 has XSS via the Slug or Name on the Roles screen, because of mishandling on the "Operation log" screen.

Affected Versions

Version 1.7.3

Solution

Unfortunately, there is no solution available yet.

Last Modified

2024-02-02