2 matches found
CVE-2020-35707
Daybyday 2.1.0 allows stored XSS via the Company Name parameter to the New Client screen...
CVE-2020-35707
CVE-2020-35707 affects Daybyday 2.1.0. The vulnerability is a stored XSS in the Company Name parameter on the New Client screen. Impact is described as a stored cross-site scripting flaw that can affect the application when user-supplied input is not properly sanitized. The CVE record lists the v...