CVE-2020-9390 in SquaredUpinfo

Zusammenfassung

von MITRE • 04.02.2021

SquaredUp allowed Stored XSS before version 4.6.0. A user was able to create a dashboard that executed malicious content in iframe or by uploading an SVG that contained a script.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

25.02.2020

Veröffentlichung

04.02.2021

Moderieren

akzeptiert

Eintrag

VDB-169181

CPE

bereit

CWE

CWE-79 (bestätigt)

CVSS

3.5 (VulDB)

EPSS

0.00445

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2020-9390
NVD	https://nvd.nist.gov/vuln/detail/CVE-2020-9390
CVE Details	https://www.cvedetails.com/cve/CVE-2020-9390/

◂ Zurück Übersicht Weiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!