CVE-2020-8020

A Improper Neutralization of Input During Web Page Generation vulnerability in open-build-service allows remote attackers to store arbitrary JS code to cause XSS. This issue affects: openSUSE open-build-service versions prior to 7cc32c8e2ff7290698e101d9a80a9dc29a5500fb.
References
Link Resource
https://bugzilla.suse.com/show_bug.cgi?id=1171439 Issue Tracking Vendor Advisory
https://lists.debian.org/debian-lts-announce/2021/02/msg00006.html Mailing List Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:opensuse:open_build_service:*:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Information

Published : 2020-05-13 03:15

Updated : 2021-03-15 06:54


NVD link : CVE-2020-8020

Mitre link : CVE-2020-8020

Products Affected
No products.
CWE