CVE-2016-8855

2017-03-19T14:59:00
ID CVE-2016-8855
Type cve
Reporter NVD
Modified 2017-03-21T10:30:19

Description

Cross-Site Scripting (XSS) in "/sitecore/client/Applications/List Manager/Taskpages/Contact list" in Sitecore Experience Platform 8.1 rev. 160519 (8.1 Update-3) allows remote attacks via the Name or Description parameter. This is fixed in 8.2 Update-2.