Filtered by vendor Sherlockim Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2021-29267 1 Sherlockim 1 Sherlockim 2024-11-21 6.1 Medium
Sherlock SherlockIM through 2021-03-29 allows Cross Site Scripting (XSS) by leveraging the api/Files/Attachment URI to attack help-desk staff via the chatbot feature.