CVE-2020-26218

touchbase.ai before version 2.0 is vulnerable to Cross-Site Scripting. The vulnerability allows an attacker to inject HTML payloads which could result in defacement, user redirection to a malicious webpage/website etc. The issue is patched in version 2.0.

touchbase.ai before version 2.0 is vulnerable to Cross-Site Scripting. The vulnerability allows an attacker to inject HTML payloads which could result in defacement, user redirection to a malicious webpage/website etc. The issue is patched in version 2.0.

touchbase.ai anterior a versión 2.0 es vulnerable a un ataque de tipo Cross-Site Scripting. La vulnerabilidad permite a un atacante inyectar cargas útiles HTML que podrían resultar en una desfiguración, un redireccionamiento del usuario hacia una página web/sitio web malicioso, etc. El problema es parcheado en la versión 2.0