CVE-2019-25311

Name of the Vulnerable Software and Affected Versions thesystem version 1.0

Description thesystem version 1.0 has a persistent cross-site scripting issue. Attackers can inject malicious scripts through several server data input fields. Specifically, crafted script payloads can be submitted in the following parameters to execute arbitrary JavaScript in victim browsers: operating system, system owner, system username, system password, system description, and server name.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.