Unrated severityNVD Advisory· Published Jan 21, 2021· Updated Aug 4, 2024
CVE-2020-8292
CVE-2020-8292
Description
Rocket.Chat server before 3.9.0 is vulnerable to a self cross-site scripting (XSS) vulnerability via the drag & drop functionality in message boxes.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Rocket.Chat/Rocket.Chat serverdescription
- Range: <3.9.0
Patches
Vulnerability mechanics
References
2- docs.rocket.chat/guides/security/security-updatesmitrex_refsource_MISC
- hackerone.com/reports/962902mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.