Security Advisory

CVE-2020-25104

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-03 14:20:12

Last updated 2024-08-04 15:26:09

Assigner mitre

State PUBLISHED

Description

eramba c2.8.1 and Enterprise before e2.19.3 allows XSS via a crafted filename for a file attached to an object. For example, the filename has a complete XSS payload followed by the .png extension.

← Browse all CVEs View on cve.org ↗