| ID | CVE-2020-36844 | ||||||
| Sažetak | The KnowBe4 Security Awareness Training application before 2020-01-10 allows reflected XSS. The response has a SCRIPT element that sets window.location.href to a JavaScript URL. | ||||||
| Reference | |||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N | ||||||
| Zadnje važnije ažuriranje | 21-04-2025 - 14:23 | ||||||
| Objavljeno | 20-04-2025 - 22:15 |
