Alfresco Enterprise before 5.2.7 and Alfresco Community before 6.2.0 (rb65251d6-b368) has XSS via a user profile photo, as demonstrated by a SCRIPT element in an SVG document.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-03-02T18:30:08
Updated: 2024-08-04T10:12:10.186Z
Reserved: 2020-02-07T00:00:00
Link: CVE-2020-8777
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-03-02T19:15:12.883
Modified: 2022-05-24T17:40:31.043
Link: CVE-2020-8777
Redhat
No data.