NotCVE - vendor:"Ni-consul" product:"Sales Force Assistant" version:" <= 11.2.48"

1 results (0.002 seconds)

CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0

CVE-2020-5570

https://notcve.org/view.php?id=CVE-2020-5570

28 Apr 2020 — Cross-site scripting vulnerability in Sales Force Assistant version 11.2.48 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors. Una vulnerabilidad de tipo Cross-site scripting en Sales Force Assistant versiones anteriores a 11.2.48, permite a atacantes autenticados remotamente inyectar script web o HTML arbitrario por medio de vectores no especificados. • http://jvn.jp/en/jp/JVN47668991/index.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •