← back
CVE-2021-44775

CVE-2021-44775

CVSS 6.5 MEDIUMEPSS 0.5%CWE-79
Cross-site scripting (XSS) issue in Website app of Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier, allows remote attackers to inject arbitrary web script in the browser of a victim, by posting crafted contents.
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Affected products
Odoo · Odoo CommunityOdoo · Odoo Enterprise

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/odoo/odoo/issues/107691https://www.debian.org/security/2023/dsa-5399