Unrated severityNVD Advisory· Published Apr 20, 2020· Updated Aug 4, 2024
CVE-2020-10935
CVE-2020-10935
Description
Zulip Server before 2.1.3 allows XSS via a Markdown link, with resultant account takeover.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Zulip/Zulip Serverdescription
- Range: <2.1.3
Patches
Vulnerability mechanics
References
2- blog.zulip.org/2020/04/01/zulip-server-2-1-3-security-release/mitrex_refsource_CONFIRM
- www.coresecurity.com/advisories/zulip-account-takeover-stored-xssmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.