Reflected Cross-Site Scripting (XSS) Vulnerability in Fuji Xerox DocuShare

Reflected Cross-Site Scripting (XSS) Vulnerability in Fuji Xerox DocuShare

CVE-2019-16307 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

A Reflected Cross-Site Scripting (XSS) vulnerability in the webEx module in webExMeetingLogin.jsp and deleteWebExMeetingCheck.jsp in Fuji Xerox DocuShare through 7.0.0.C1.609 allows remote attackers to inject arbitrary web script or HTML via the handle parameter (webExMeetingLogin.jsp) and meetingKey parameter (deleteWebExMeetingCheck.jsp).

Learn more about our Web App Pen Testing.