CVE-2020-10544

Posted on 2020년 3월 14일2020년 3월 14일 by admin

CVE-2020-10544

An XSS issue was discovered in tooltip/tooltip.js in PrimeTek PrimeFaces 7.0.11. In a web application using PrimeFaces, an attacker can provide JavaScript code in an input field whose data is later used as a tooltip title without any input validation.

Source: CVE-2020-10544

답글 남기기 응답 취소