CVE-2020-35720 – ** UNSUPPORTED WHEN ASSIGNED ** Stored XSS in Quest Policy Authority 8.1.2.200 allows remo …

CVE-2020-35720 – UNSUPPORTED WHEN ASSIGNED Stored XSS in Quest Policy Authority 8.1.2.200 allows remo …

11 January 2021

Vuln ID: CVE-2020-35720

Published: 2021-01-11 03:15:13Z

Description: ** UNSUPPORTED WHEN ASSIGNED ** Stored XSS in Quest Policy Authority 8.1.2.200 allows remote attackers to store malicious code in multiple fields (first name, last name, and logon name) when creating or modifying a user via the submitUser.jsp file. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

Source: NVD.NIST.GOV

Date:

11 January 2021

Categorie(s):

NVD

Tag(s):

NVD

Connecting Tech to Black America20 April 2024
Fortinet named a Challenger in the 2024 Gartner® Magic Quadrant™ for Security Service Edge20 April 2024
AI-Controlled Fighter Jets Are Dogfighting With Human Pilots Now20 April 2024
Phishing Scams in the Gaming Community20 April 2024
Critical Update: CrushFTP Zero-Day Flaw Exploited in Targeted Attacks20 April 2024