Security Advisory

CVE-2020-29653

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-04-13 12:02:10

Last updated 2024-08-04 16:55:10

Assigner mitre

State PUBLISHED

Description

Froxlor through 0.10.22 does not perform validation on user input passed in the customermail GET parameter. The value of this parameter is reflected in the login webpage, allowing the injection of arbitrary HTML tags.

← Browse all CVEs View on cve.org ↗