10 matches found
EUVD-2020-26732
Malware in sbrugna...
CVE-2020-5570
Cross-site scripting vulnerability in Sales Force Assistant version 11.2.48 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors...
Sales Force Assistant Cross-Site Scripting Vulnerability
NI Consulting Sales Force Assistant is a suite of sales support and information sharing tools from NI Consulting Japan. The product supports features such as customer relationship management, case management, complaint management, and visit program management. A cross-site scripting vulnerability...
Sales Force Assistant vulnerable to cross-site scripting
Overview Sales Force Assistant provided by NI Consulting CO.,Ltd. contains a cross-site scripting vulnerability CWE-79. Masanobu Miyagi reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact An arbitrary script may...
CVE-2020-5570
Cross-site scripting vulnerability in Sales Force Assistant version 11.2.48 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2020-5570
Cross-site scripting vulnerability in Sales Force Assistant version 11.2.48 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors...
Cross site scripting
Cross-site scripting vulnerability in Sales Force Assistant version 11.2.48 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2020-5570
CVE-2020-5570 affects Sales Force Assistant (versions 11.2.48 and earlier). The vulnerability is a cross-site scripting (CWE-79) issue that allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors. Documented impact indicates arbitrary script execution ...
CVE-2020-5570
Cross-site scripting vulnerability in Sales Force Assistant version 11.2.48 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors...
JVN#47668991: Sales Force Assistant vulnerable to cross-site scripting
Sales Force Assistant provided by NI Consulting CO.,Ltd. contains a cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on the user's web browser while logging in Sales Force Assistant. Solution Update the Software Update the software to the latest version...