Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow stored XSS via the newUserName parameter on the "User Creation, Deletion and Password Maintenance" screen (when creating a new user).
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-02-17T03:02:26
Updated: 2024-08-04T10:19:19.795Z
Reserved: 2020-02-17T00:00:00
Link: CVE-2020-9028
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-02-17T04:15:11.327
Modified: 2020-02-19T01:37:42.300
Link: CVE-2020-9028
Redhat
No data.