CVE-2020-9460

Octech Oempro 4.7 through 4.11 allow XSS by an authenticated user. The parameter CampaignName in Campaign.Create is vulnerable.
References
Link Resource
https://www.octeth.com/ Product
https://guilhermerubert.com/blog/cve-2020-9461/ Exploit Third Party Advisory
https://github.com/Guilherme-Rubert/CVE-2020-9460 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:octech:oempro:*:*:*:*:*:*:*:*

Information

Published : 2020-04-14 03:15

Updated : 2020-04-14 05:05


NVD link : CVE-2020-9460

Mitre link : CVE-2020-9460

Products Affected
No products.
CWE