CVE-2019-25263
Zendesk App SweetHawk Survey 1.6 - Persistent Cross-Site Scripting
Zendesk SweetHawk Survey 1.6 contains a persistent cross-site scripting vulnerability that allows attackers to inject malicious scripts through support ticket submissions. Attackers can insert XSS payloads like script tags into ticket text that automatically execute when survey pages are loaded by other users.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N
Productos afectados
Sweethawk · Zendesk App SweetHawk Survey¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →