Security Advisory

CVE-2020-35852

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-02-23 00:51:55

Last updated 2024-08-04 17:16:13

Assigner mitre

State PUBLISHED

Description

Chatbox is affected by cross-site scripting (XSS). An attacker has to upload any XSS payload with SVG, XML file in Chatbox. There is no restriction on file upload in Chatbox which leads to stored XSS.

← Browse all CVEs View on cve.org ↗