Unrated severityNVD Advisory· Published Jan 21, 2021· Updated Aug 4, 2024
CVE-2020-8288
CVE-2020-8288
Description
The specializedRendering function in Rocket.Chat server before 3.9.2 allows a cross-site scripting (XSS) vulnerability by way of the value parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Rocket.Chat/Rocket.Chat serverdescription
- Range: <3.9.2
Patches
Vulnerability mechanics
References
3- docs.rocket.chat/guides/security/security-updatesmitrex_refsource_MISC
- hackerone.com/reports/899954mitrex_refsource_MISC
- rocket.chat/xss-vulnerability-hotfix-available-for-all-affected-versions/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.