← volver
CVE-2020-8288

CVE-2020-8288

EPSS 0.8%CWE-79
The `specializedRendering` function in Rocket.Chat server before 3.9.2 allows a cross-site scripting (XSS) vulnerability by way of the `value` parameter.
Productos afectados
n/a · Rocket.Chat server

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://docs.rocket.chat/guides/security/security-updateshttps://hackerone.com/reports/899954https://rocket.chat/xss-vulnerability-hotfix-available-for-all-affected-versions/