Security Advisory

CVE-2020-10098

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-03-05 00:38:39

Last updated 2024-08-04 10:50:57

Assigner mitre

State PUBLISHED

Description

An XSS issue was discovered in Zammad 3.0 through 3.2. Malicious code can be provided by a low-privileged user through the Email functionality. The malicious JavaScript will execute within the browser of any user who opens the Ticket with the Article created from that Email.

← Browse all CVEs View on cve.org ↗