4.3
CVSSv2

CVE-2019-19619

Published: 06/12/2019 Updated: 10/12/2019
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Vulnerability Summary

domain/section/markdown/markdown.go in Documize prior to 3.5.1 mishandles untrusted Markdown content. This was addressed by adding the bluemonday HTML sanitizer to defend against XSS.

Vulnerability Trend

Affected Products

Vendor Product Versions
DocumizeDocumize3.2.0, 3.3.0, 3.3.1, 3.3.2, 3.4.0, 3.4.1, 3.4.2, 3.5.0