Security Advisory
CVE-2020-8288
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
The `specializedRendering` function in Rocket.Chat server before 3.9.2 allows a cross-site scripting (XSS) vulnerability by way of the `value` parameter.