Vulnerabilities

CVE-2020-29072

by Fred · 24/11/2020

A Cross-Site Script Inclusion vulnerability was found on LiquidFiles before 3.3.19. This client-side attack requires user interaction (opening a link) and successful exploitation could lead to encrypted e-mail content leakage via messages/sent?format=js and popup?format=js.

Date published : 2020-11-24

https://lean0x2f.github.io/liquidfiles_advisory

https://man.liquidfiles.com/release_notes/version_3-3-x.html

Similar

Tags: Cybersecurity Alert