Unrated severityNVD Advisory· Published Apr 14, 2021· Updated Aug 4, 2024
CVE-2020-35418
CVE-2020-35418
Description
Cross Site Scripting (XSS) in the contact page of Group Office CRM 6.4.196 by uploading a crafted svg file.
Affected products
2- Group Office/Group Office CRMdescription
Patches
Vulnerability mechanics
References
1- fatihhcelik.blogspot.com/2020/12/group-office-crm-stored-xss-via-svg-file.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.