Vulnerabilities

CVE-2020-9055

by Fred · 30/03/2020

Versiant LYNX Customer Service Portal (CSP), version 3.5.2, is vulnerable to stored cross-site scripting, which could allow a local, authenticated attacker to insert malicious JavaScript that is stored and displayed to the end user. This could lead to website redirects, session cookie hijacking, or information disclosure.

Date published : 2020-03-30

https://kb.cert.org/vuls/id/962085/

https://csp.poha.com/lynx/

Similar

Tags: Cybersecurity Alert