CVE-2020-8020

Summary

A Improper Neutralization of Input During Web Page Generation vulnerability in open-build-service allows remote attackers to store arbitrary JS code to cause XSS. This issue affects: openSUSE open-build-service versions prior to 7cc32c8e2ff7290698e101d9a80a9dc29a5500fb.

Affected Software

VendorProductVersion RangeStatus
openSUSEopen-build-serviceopen-build-service < 7cc32c8e2ff7290698e101d9a80a9dc29a5500fbaffected

Weaknesses

  • CWE-79: CWE-79: Improper Neutralization of Input During Web Page Generation

ADP Enrichment

CVE Program Container

Additional References

References