A stored cross site scripting (XSS) vulnerability in... · CVE-2020-28919 · GitHub Advisory Database · GitHub

A stored cross site scripting (XSS) vulnerability in...

Moderate severity Unreviewed Published Jan 16, 2022 to the GitHub Advisory Database • Updated Feb 3, 2023

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

A stored cross site scripting (XSS) vulnerability in Checkmk 1.6.0x prior to 1.6.0p19 allows an authenticated remote attacker to inject arbitrary JavaScript via a javascript: URL in a view title.

References

Published by the National Vulnerability Database

Jan 15, 2022

Published to the GitHub Advisory Database Jan 16, 2022

Last updated Feb 3, 2023