ID CVE-2020-28945
Summary OX App Suite 7.10.4 and earlier allows XSS via crafted content to reach an undocumented feature, such as ![](http://onerror=Function.constructor, in a Notes item.
References
Vulnerable Configurations
CVSS
Base: None
Impact:
Exploitability:
Access
VectorComplexityAuthentication
Impact
ConfidentialityIntegrityAvailability
Last major update 04-05-2021 - 10:21
Published 03-05-2021 - 20:15
Last modified 04-05-2021 - 10:21
Back to Top