Cross-site scripting (XSS) issue in Accounting app of Odoo Enterprise 13.0 through 15.0, allows remote attackers who are able to control the contents of accounting journal entries to inject arbitrary web script in the browser of a victim.
References
Link | Resource |
---|---|
https://github.com/odoo/odoo/issues/107686 | Issue Tracking Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: odoo
Published: 2023-04-25T18:33:34.490Z
Updated: 2023-04-25T18:33:34.490Z
Reserved: 2021-12-27T06:17:50.969Z
Link: CVE-2021-44461
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-04-25T19:15:09.670
Modified: 2023-05-02T19:48:29.543
Link: CVE-2021-44461
JSON object: View
Redhat Information
No data.
CWE