PT-2020-16137 · Softwarex+1 · Softwarex+1
Luuk Verhoeven
·
Published
2020-10-15
·
Updated
2024-03-06
·
CVE-2020-25628
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
SoftwareX versions 3.5 through 3.5.13
SoftwareX versions 3.7 through 3.7.7
SoftwareX versions 3.8 through 3.8.4
SoftwareX versions 3.9 through 3.9.1
Description
The filter in the tag manager required extra sanitizing to prevent a reflected XSS risk.
Recommendations
For versions 3.5 through 3.5.13, update to version 3.5.14.
For versions 3.7 through 3.7.7, update to version 3.7.8.
For versions 3.8 through 3.8.4, update to version 3.8.5.
For versions 3.9 through 3.9.1, update to version 3.9.2.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Softwarex