CVE-2020-9028

Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow stored XSS via the newUserName parameter on the "User Creation, Deletion and Password Maintenance" screen (when creating a new user).
References
Configurations

Configuration 1


Information

Published : 2020-02-17 04:15

Updated : 2020-02-19 01:37


NVD link : CVE-2020-9028

Mitre link : CVE-2020-9028

Products Affected
No products.
CWE