Security Advisory

CVE-2020-1943

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-04-01 18:18:48
Last updated 2024-08-04 06:53:59
Assigner apache
State PUBLISHED

Description

Data sent with contentId to /control/stream is not sanitized, allowing XSS attacks in Apache OFBiz 16.11.01 to 16.11.07.

← Browse all CVEs View on cve.org ↗