CVE-2020-24712

CVE-2020-24712

EPSS 0.9%

Cross Site Scripting (XSS) vulnerability in Gophish before 0.11.0 via the IMAP Host field on the account settings page.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/gophish/gophish/commit/4e9b94b641755f359542b246cc0c555fa3bc6715 https://github.com/gophish/gophish/releases/tag/v0.11.0 https://herolab.usd.de/security-advisories/usd-2020-0050/