First published: Thu Aug 26 2021(Updated: )
A cross-site scripting (XSS) vulnerability in the referer parameter of Dzzoffice 2.02 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Dzzoffice Dzzoffice | =2.02 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-19703 is a cross-site scripting (XSS) vulnerability in the referer parameter of Dzzoffice 2.02.
Attackers can exploit CVE-2020-19703 by executing arbitrary web scripts or HTML via a crafted payload.
Dzzoffice 2.02 is affected by CVE-2020-19703.
CVE-2020-19703 has a severity rating of medium (6.1).
A fix for CVE-2020-19703 may be available from the vendor. Check the vendor's website or contact their support for more information.