Cross-site scripting (XSS) issue in Discuss app of Odoo Community 14.0 through 15.0, and Odoo Enterprise 14.0 through 15.0, allows remote attackers to inject arbitrary web script in the browser of a victim, by posting crafted contents.
References
Link | Resource |
---|---|
https://github.com/odoo/odoo/issues/107693 | Issue Tracking Patch Vendor Advisory |
https://www.debian.org/security/2023/dsa-5399 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: odoo
Published: 2023-04-25T18:33:40.613Z
Updated: 2023-04-25T18:33:40.613Z
Reserved: 2021-07-20T14:28:12.183Z
Link: CVE-2021-26263
JSON object: View
NVD Information
Status : Modified
Published: 2023-04-25T19:15:09.470
Modified: 2023-05-05T21:15:09.480
Link: CVE-2021-26263
JSON object: View
Redhat Information
No data.
CWE