CVE-2020-23450

2020-09-01T16:15:00
ID CVE-2020-23450
Type cve
Reporter cve@mitre.org
Modified 2020-09-08T17:02:00

Description

Spiceworks Version <= 7.5.00107 is affected by XSS. Any name typed on Custom Groups function is vulnerable to stored XSS as they displayed on http://127.0.0.1/inventory/groups/ without output sanitization.