CVE-2020-13248

CVE-2020-13248

EPSS 0.6%

BooleBox Secure File Sharing Utility before 4.2.3.0 allows stored XSS via a crafted avatar field within My Account JSON data to Account.aspx.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://app.boolebox.com/release/vulnerabilities/CVE-2020-13247-13248.html https://members.backbox.org/boolebox-secure-sharing-multiple-vulnerabilities/