Unrated severityNVD Advisory· Published Dec 22, 2020· Updated Aug 5, 2024
CVE-2018-15641
CVE-2018-15641
Description
Cross-site scripting (XSS) issue in web module in Odoo Community 11.0 through 14.0 and Odoo Enterprise 11.0 through 14.0, allows remote authenticated internal users to inject arbitrary web script in the browser of a victim via crafted calendar event attributes.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3>=11.0, <=14.0+ 1 more
- (no CPE)range: >=11.0, <=14.0
- (no CPE)range: unspecified
- Range: >=11.0, <=14.0
Patches
Vulnerability mechanics
References
1- github.com/odoo/odoo/issues/63704mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.