Multiple cross-site scripting (XSS) vulnerabilities in the Sales module of SugarCRM v6.5.18 allows attackers to execute arbitrary web scripts or HTML via crafted payloads entered into the primary address state or alternate address state input fields.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.vulnerability-lab.com/get_content.php?id=2249 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-10-22T19:20:18
Updated: 2024-08-04T16:48:01.494Z
Reserved: 2020-11-19T00:00:00
Link: CVE-2020-28956
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-10-22T20:15:10.740
Modified: 2024-11-21T05:23:22.810
Link: CVE-2020-28956
Redhat
No data.