CVE-2020-4082
CVE-2020-4082 concerns the HCL Connections 5.5 help system, where improper validation of user-supplied input enables cross-site scripting. A remote attacker can craft a URL that, when clicked, runs script in the victim’s browser within the hosting site’s security context and can steal cookie-base...