CVE-2020-28149
The CVE-2020-28149 entry concerns myDBR version 5.8.3/4262, where a Cross Site Scripting (XSS) flaw is reported. The attack vector is CSRF token injection to XSS, potentially enabling remote arbitrary code execution. Publicly cited sources describe the affected component as CSRF Token, with impac...