CVE-2018-15634

Summary

Cross-site scripting (XSS) issue in attachment management in Odoo Community 14.0 and earlier and Odoo Enterprise 14.0 and earlier, allows remote attackers to inject arbitrary web script in the browser of a victim via a crafted link.

Affected Software

VendorProductVersion RangeStatus
OdooOdoo Communityunspecified <= 14.0affected
OdooOdoo Enterpriseunspecified <= 14.0affected

Weaknesses

  • CWE-79: CWE-79 Cross-site Scripting (XSS)

ADP Enrichment

CVE Program Container

Additional References

References