CVE-2020-13655

Posted on 2020년 9월 1일2020년 9월 1일 by admin

CVE-2020-13655

An issue was discovered in Collabtive 3.0 and later. managefile.php is vulnerable to XSS: when the action parameter is set to movefile and the id parameter corresponds to a project the current user has access to, the file and target parameters are reflected.

Source: CVE-2020-13655

답글 남기기 응답 취소