CVE-2020-8823

htmlfile in lib/transport/htmlfile.js in SockJS before 0.3.0 is vulnerable to Reflected XSS via the /htmlfile c (aka callback) parameter.
Configurations

Configuration 1

cpe:2.3:a:sockjs_project:sockjs:*:*:*:*:*:node.js:*:*

Information

Published : 2020-02-10 03:15

Updated : 2021-01-12 04:01


NVD link : CVE-2020-8823

Mitre link : CVE-2020-8823

Products Affected
No products.
CWE