A stored XSS issue exists in Appspace 6.2.4. After a user is authenticated and enters an XSS payload under the groups section of the network tab, it is stored as the group name. Whenever another member visits that group, this payload executes.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/viperbluff/Appspace-Ver-6.2.4-Stored-Xss |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-02-22T16:01:53
Updated: 2024-08-03T21:26:10.011Z
Reserved: 2021-02-22T00:00:00
Link: CVE-2021-27564
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-02-22T17:15:12.847
Modified: 2024-11-21T05:58:12.023
Link: CVE-2021-27564
Redhat
No data.