{"id":"CVE-2019-25156","details":"A vulnerability classified as problematic was found in dstar2018 Agency up to 61. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument QSType/QuickSearch leads to cross site scripting. The attack can be launched remotely. The patch is named 975b56953efabb434519d9feefcc53685fb8d0ab. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-244495.","modified":"2026-04-10T04:17:20.700119Z","published":"2023-11-07T06:15:07.783Z","references":[{"type":"ADVISORY","url":"https://vuldb.com/?id.244495"},{"type":"ADVISORY","url":"https://vuldb.com/?ctiid.244495"},{"type":"FIX","url":"https://github.com/dstar2018/agency-code-repo/commit/975b56953efabb434519d9feefcc53685fb8d0ab"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/dstar2018/agency-code-repo","events":[{"introduced":"0"},{"fixed":"975b56953efabb434519d9feefcc53685fb8d0ab"}]},{"type":"GIT","repo":"https://github.com/dstar2018/agency-code-repo","events":[{"introduced":"0"},{"fixed":"975b56953efabb434519d9feefcc53685fb8d0ab"}]}],"versions":["db_mod.1","db_mod.10","db_mod.11","db_mod.12","db_mod.13","db_mod.14","db_mod.15","db_mod.17","db_mod.2","db_mod.20","db_mod.21","db_mod.22","db_mod.23","db_mod.24","db_mod.25","db_mod.26","db_mod.28","db_mod.29","db_mod.3","db_mod.32","db_mod.33","db_mod.34","db_mod.36","db_mod.39","db_mod.4","db_mod.41","db_mod.43","db_mod.44","db_mod.46","db_mod.5","db_mod.51","db_mod.53","db_mod.54","db_mod.55","db_mod.6","db_mod.61","db_mod.7","db_mod.8","db_mod.9","info_additional","multiple_ethnicity","snapshot_2","snapshot_pre1"],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"2019-01-15"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-25156.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}]}