Portainer before 1.22.1 Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) Vulnerability

Summary

Portainer before 1.22.1 suffers from improper neutralization of input during web page generation (‘Cross-site Scripting’) vulnerability

Credit:

The information has been provided by Tin Duong

The original article can be found at:https://fortiguard.com/zeroday/FG-VD-19-118


Details

Vulnerable Systems:

Portainer before 1.22.1 

 

CVE Information:

CVE-2019-16873

Disclosure Timeline:
Published Date:11/7/2019