Demisto · Demisto · CVE-2019-1568
**Name of the Vulnerable Software and Affected Versions**
Demisto version 4.5 build 40249
**Description**
The issue exists due to inadequate protection of the web page structure, allowing for cross-site scripting (XSS) attacks. This can enable a remote attacker to execute arbitrary JavaScript or HTML using a specially crafted hyperlink.
**Recommendations**
For Demisto version 4.5 build 40249, update to a version that includes a fix for this issue to prevent cross-site scripting attacks. As a temporary workaround, consider restricting access to potentially vulnerable web pages or modules within Demisto until a patch is available.