CVE-2020-26218

Publication date

2020-11-11 22:00:14

Family

GitHub_M

State

PUBLISHED

Description

touchbase.ai before version 2.0 is vulnerable to Cross-Site Scripting. The vulnerability allows an attacker to inject HTML payloads which could result in defacement, user redirection to a malicious webpage/website etc. The issue is patched in version 2.0.