CVE

CVE-2020-8292

CVE-2020-8292

Rocket.Chat server before 3.9.0 is vulnerable to a self cross-site scripting (XSS) vulnerability via the drag & drop functionality in message boxes.

Source: CVE-2020-8292

Exit mobile version