← voltar
CVE-2020-23050

CVE-2020-23050

EPSS 1.1%
TAO Open Source Assessment Platform v3.3.0 RC02 was discovered to contain a HTML injection vulnerability in the userFirstName parameter of the user account input field. This vulnerability allows attackers to execute phishing attacks, external redirects, and arbitrary code.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://cwe.mitre.org/data/definitions/79.htmlhttps://www.vulnerability-lab.com/get_content.php?id=2215