Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:12 p.m.11 views

CVE-2020-13972

Enghouse Web Chat 6.2.284.34 allows XSS. When one enters their own domain name in the WebServiceLocation parameter, the response from the POST request is displayed, and any JavaScript returned from the external server is executed in the browser. This is related to CVE-2019-16951...

6.1CVSS6.7AI score0.00952EPSS
Exploits2
NVD
NVD
added 2020/09/03 3:15 p.m.26 views

CVE-2020-13972

Enghouse Web Chat 6.2.284.34 allows XSS. When one enters their own domain name in the WebServiceLocation parameter, the response from the POST request is displayed, and any JavaScript returned from the external server is executed in the browser. This is related to CVE-2019-16951...

6.1CVSS5.3AI score0.00686EPSS
Exploits1References1
CVE
CVE
added 2020/09/03 2:36 p.m.53 views

CVE-2020-13972

CVE-2020-13972 in Enghouse Web Chat 6.2.284.34 is an XSS vulnerability triggered when a user supplies their own domain in the WebServiceLocation parameter; the POST response can display external JavaScript from a attacker-controlled server. This entry is tied to CVE-2019-16951, which Red Hat and ...

6.1CVSS5.3AI score0.00686EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/09/03 2:36 p.m.35 views

CVE-2020-13972

Enghouse Web Chat 6.2.284.34 allows XSS. When one enters their own domain name in the WebServiceLocation parameter, the response from the POST request is displayed, and any JavaScript returned from the external server is executed in the browser. This is related to CVE-2019-16951...

5.5AI score0.00686EPSS
Exploits1References1
Rows per page
Query Builder