CVE-2020-8031

A Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Open Build Service allows remote attackers to store JS code in markdown that is not properly escaped, impacting confidentiality and integrity. This issue affects: Open Build Service versions prior to 2.10.8.
References
Link Resource
https://bugzilla.suse.com/show_bug.cgi?id=1178880 Exploit Issue Tracking
Configurations

Configuration 1

cpe:2.3:a:opensuse:open_build_service:*:*:*:*:*:*:*:*

Information

Published : 2021-02-11 03:15

Updated : 2021-02-17 05:59


NVD link : CVE-2020-8031

Mitre link : CVE-2020-8031

Products Affected
No products.
CWE