CVE-2018-15634

Cross-site scripting (XSS) issue in attachment management in Odoo Community 14.0 and earlier and Odoo Enterprise 14.0 and earlier, allows remote attackers to inject arbitrary web script in the browser of a victim via a crafted link.
References
Link Resource
https://github.com/odoo/odoo/issues/63702 Patch Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:odoo:odoo:*:*:*:*:community:*:*:*
cpe:2.3:a:odoo:odoo:*:*:*:*:enterprise:*:*:*

Information

Published : 2020-12-22 05:15

Updated : 2020-12-22 07:55


NVD link : CVE-2018-15634

Mitre link : CVE-2018-15634

Products Affected
No products.
CWE