Rocket.Chat · Rocket.Chat · CVE-2019-17220
**Name of the Vulnerable Software and Affected Versions**
Rocket.Chat versions prior to 2.1.0
**Description**
The issue allows for XSS via a URL on a ![title] line, which can lead to malicious script execution.
**Recommendations**
For versions prior to 2.1.0, update to version 2.1.0 or later to resolve the issue.