{"vulnerability": "CVE-2019-19491", "sightings": [{"uuid": "7c42564f-4fda-4bf4-abe1-75a28d291579", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-19491", "type": "published-proof-of-concept", "source": "https://t.me/ctinow/200287", "content": "https://ift.tt/gvrSytH\nCVE-2019-19491 | TestLink 1.9.19 archiveData.php edit cross site scripting (EDB-47702)", "creation_timestamp": "2024-03-05T14:46:24.000000Z"}, {"uuid": "e7854b44-6b96-4ee3-ad4c-ebb1fcc799d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-19491", "type": "seen", "source": "https://t.me/cveNotify/337", "content": "\ud83d\udea8 CVE-2019-20381\nTestLink before 1.9.20 allows XSS via non-lowercase javascript: in the index.php reqURI parameter. NOTE: this issue exists because of an incomplete fix for CVE-2019-19491.\n\n\ud83c\udf96@cveNotify", "creation_timestamp": "2020-01-20T13:37:36.000000Z"}]}