VYPR
Medium severity5.4NVD Advisory· Published Mar 25, 2020· Updated Jun 17, 2026

CVE-2020-9520

CVE-2020-9520

Description

A stored XSS vulnerability was discovered in Micro Focus Vibe, affecting all Vibe version prior to 4.0.7. The vulnerability could allows a remote attacker to craft and store malicious content into Vibe such that when the content is viewed by another user of the system, attacker controlled JavaScript will execute in the security context of the target user’s browser.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Microfocus/Vibellm-fuzzy
    Range: <4.0.7
  • Micro Focus International/Micro Focus Vibe.v5
    Range: All Vibe version prior to Vive 4.0.7.

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.