CVE-2020-10985

Name of the Vulnerable Software and Affected Versions Gambio GX versions prior to 4.0.1.0

Description The issue allows for XSS in the admin/coupon admin.php file. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world incidents where this issue was exploited.

Recommendations For versions prior to 4.0.1.0, update to version 4.0.1.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the admin/coupon admin.php file to minimize the risk of exploitation.