2 matches found
CVE-2020-28859
CVE-2020-28859 affects OpenAsset Digital Asset Management (DAM) up to version 12.0.19. The vulnerability stems from improper input sanitization in multiple parameters/endpoints, enabling cross-site scripting (XSS). NVD describes reflected XSS; PacketStorm notes stored XSS in various fields. Fixed...
OpenAsset Digital Asset Management Cross Site Scripting
Title: Stored cross-site scripting XSS Product: OpenAsset Digital Asset Management by OpenAsset Vendor Homepage: https://www.openasset.com/ Vulnerable Version: 12.0.19 Cloud 11.2.1 On-premise Fixed Version: 12.0.23 Cloud 11.4.10 On-premise CVE Number: CVE-2020-28857 Author: Jack Misiura from The...