CVE-2020-13116
Affected product: OpenText Carbonite Server Backup Portal. Vulnerability: Cross‑Site Scripting (XSS) via policy creation. Root cause: failure to adequately filter user input at policy creation. Impact: authenticated attacker can inject JavaScript into a client browser (arbitrary code execution in...