CVE-2020-21147 – RockOA V1.9.8 is affected by a cross-site scripting (XSS) vulnerability which allows remot …

26 January 2021

Vuln ID: CVE-2020-21147

Published: 2021-01-26 18:15:42Z

Description: RockOA V1.9.8 is affected by a cross-site scripting (XSS) vulnerability which allows remote attackers to send malicious code to the administrator and execute JavaScript code, because webmain/flow/input/mode_emailmAction.php does not perform strict filtering.

Source: NVD.NIST.GOV

Date:

26 January 2021

Categorie(s):

NVD

Tag(s):

NVD

“Junk gun” ransomware: the cheap new threat to small businesses25 April 2024
Samourai cryptomixer founders indicted for money laundering25 April 2024
CISA to deploy automated vulnerability warning program by year end25 April 2024
Lincoln Project loses $35K following BEC attack25 April 2024
The real space race: Inside geopolitics and security of a $1.8T industry25 April 2024