CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-5838
https://notcve.org/view.php?id=CVE-2020-5838
Symantec IT Analytics, prior to 2.9.1, may be susceptible to a cross-site scripting (XSS) exploit, which is a type of issue that can potentially enable attackers to inject client-side scripts into web pages viewed by other users. Symantec IT Analytics, versiones anteriores a 2.9.1, puede ser susceptible a una explotación de una vulnerabilidad de tipo cross-site scripting (XSS), que es un tipo de problema que puede potencialmente habilitar a atacantes para inyectar scripts del lado del cliente en páginas web visualizadas por otros usuarios. • https://support.broadcom.com/security-advisory/security-advisory-detail.html?notificationId=SYMSA1766 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •