Unrated severityOSV Advisory· Published Mar 20, 2018· Updated Aug 5, 2024
CVE-2018-8832
CVE-2018-8832
Description
enhavo 0.4.0 has XSS via a user-group that contains executable JavaScript code in the user-group name. The XSS attack launches when a victim visits the admin user group page.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- github.com/enhavo/enhavo/issues/459mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.