CVE-2020-13969

Publication date

2020-12-23 17:20:03

Family

mitre

State

PUBLISHED

Description

CRK Business Platform <= 2019.1 allows reflected XSS via erro.aspx on CRK, IDContratante, Erro, or Mod parameter. This is path-independent.