CVE-2020-9390

SquaredUp allowed Stored XSS before version 4.6.0. A user was able to create a dashboard that executed malicious content in iframe or by uploading an SVG that contained a script.
Configurations

Configuration 1

cpe:2.3:a:squaredup:squaredup:*:*:*:*:*:*:*:*

Information

Published : 2021-02-03 08:15

Updated : 2023-02-23 12:15


NVD link : CVE-2020-9390

Mitre link : CVE-2020-9390

Products Affected
No products.
CWE