Multiple cross-site scripting (XSS) vulnerabilities in the Support module of SugarCRM v6.5.18 allows attackers to execute arbitrary web scripts or HTML via crafted payloads entered into the primary address state or alternate address state input fields.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.vulnerability-lab.com/get_content.php?id=2249 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-10-22T19:19:54
Updated: 2024-08-04T17:30:08.265Z
Reserved: 2021-10-20T00:00:00
Link: CVE-2020-36501
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-10-22T20:15:11.690
Modified: 2024-11-21T05:29:40.893
Link: CVE-2020-36501
Redhat
No data.