CVE-2020-6847 HIGH

CVE-2020-6847

Vendor N/A
Product n/a
Published January 11, 2020
Last update August 4, 2024

CVSS base score

7.6/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction Required
Confidentiality High
Integrity Low

CVSS vector

CVSS:3.0/AC:L/AV:N/A:N/C:H/I:L/PR:L/S:C/UI:R

What the vulnerability does

01Description

OpenTrade through 0.2.0 has a DOM-based XSS vulnerability that is executed when an administrator attempts to delete a message that contains JavaScript.

Key dates

02Disclosure timeline

January 11, 2020 CVE published
August 4, 2024 Record updated