CVE-2020-24582
Zulip Desktop before 5.4.3 allows XSS because string escaping is mishandled during composition of the HTML for the user interface.
Date published : 2020-09-10
https://blog.zulip.com/2020/09/10/zulip-desktop-5-4-3-security-release/
Zulip Desktop before 5.4.3 allows XSS because string escaping is mishandled during composition of the HTML for the user interface.
Date published : 2020-09-10
https://blog.zulip.com/2020/09/10/zulip-desktop-5-4-3-security-release/