2 matches found
CVE-2020-7303
Cross Site scripting vulnerability in McAfee Data Loss Prevention DLP ePO extension prior to 11.5.3 allows authenticated remote user to trigger scripts to run in a user's browser via adding a new label...
CVE-2020-7303
CVE-2020-7303 is a cross-site scripting vulnerability in McAfee Data Loss Prevention (DLP) ePO extension, exploitable pre-11.5.3. An authenticated remote user can trigger client-side scripts in another user's browser by adding a new label, leading to potential cookie/session data exposure or UI s...