CVE-2020-13409
CVE-2020-13409 affects Tufin SecureTrack (R20-2 GA). The issue combines reflected and stored cross-site scripting: payloads are reflected to the user and also stored in the database, enabling re-triggering by the same or other users. Documents indicate that an admin can be targeted and that malic...