← voltar
CVE-2020-8288

CVE-2020-8288

EPSS 0.8%CWE-79
The `specializedRendering` function in Rocket.Chat server before 3.9.2 allows a cross-site scripting (XSS) vulnerability by way of the `value` parameter.
Produtos afetados
n/a · Rocket.Chat server

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://docs.rocket.chat/guides/security/security-updateshttps://hackerone.com/reports/899954https://rocket.chat/xss-vulnerability-hotfix-available-for-all-affected-versions/