SearchBlox product with version before 9.2.1 is vulnerable to stored cross-site scripting at multiple user input parameters. In SearchBlox products multiple parameters are not sanitized/validate properly which allows an attacker to inject malicious JavaScript.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://developer.searchblox.com/v9.2/changelog/version-921 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: certcc
Published: 2023-09-05T19:13:50.928Z
Updated: 2024-08-04T10:50:57.861Z
Reserved: 2020-03-05T00:00:00.000Z
Link: CVE-2020-10128
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-09-05T20:15:07.543
Modified: 2023-11-07T03:14:06.507
Link: CVE-2020-10128
Redhat
No data.