CVE-2018-15638

Summary

Cross-site scripting (XSS) issue in mail module in Odoo Community 13.0 and earlier and Odoo Enterprise 13.0 and earlier, allows remote attackers to inject arbitrary web script in the browser of a victim via crafted channel names.

Affected Software

VendorProductVersion RangeStatus
OdooOdoo Communityunspecified <= 13.0affected
OdooOdoo Enterpriseunspecified <= 13.0affected

Weaknesses

  • CWE-79: CWE-79 Cross-site Scripting (XSS)

ADP Enrichment

CVE Program Container

Additional References

References