CVE-2019-10272

An issue was discovered in Weaver e-cology 9.0. There is a CRLF Injection vulnerability via the /workflow/request/ViewRequestForwardSPA.jsp isintervenor parameter, as demonstrated by the %0aSet-cookie: substring.
References
Configurations

Configuration 1

cpe:2.3:a:weaver:e-cology:9.0:*:*:*:*:*:*:*

Information

Published : 2019-04-30 06:29

Updated : 2019-05-03 01:56


NVD link : CVE-2019-10272

Mitre link : CVE-2019-10272

Products Affected
No products.
CWE