CVE-2019-10073 is a vulnerability in Apache OFBiz
Published on September 11, 2019

The "Blog", "Forum", "Contact Us" screens of the template "ecommerce" application bundled in Apache OFBiz are weak to Stored XSS attacks. Mitigation: Upgrade to 16.11.06 or manually apply the following commits on branch 16.11: 1858438, 1858543, 1860595 and 1860616

NVD

Products Associated with CVE-2019-10073

Want to know whenever a new CVE is published for Apache OFBiz? stack.watch will email you.

Apache OFBiz

Affected Versions

Apache OFBiz Version OFBiz 16.11.01 to 16.11.05 is affected by CVE-2019-10073

Exploit Probability

EPSS

2.99%

Percentile

86.31%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-10073 is a vulnerability in Apache OFBizPublished on September 11, 2019

Products Associated with CVE-2019-10073

Affected Versions

Exploit Probability

CVE-2019-10073 is a vulnerability in Apache OFBiz
Published on September 11, 2019