CVE-2020-24708

CVE-2020-24708

EPSS 0.6%

Cross Site Scripting (XSS) vulnerability in Gophish before 0.11.0 via the Host field on the send profile form.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/gophish/gophish/commit/90fed5a575628b89eaf941e1627b49e0f3693812 https://herolab.usd.de/security-advisories/usd-2020-0048/