Vulnerabilities > CVE-2020-26221 - Unspecified vulnerability in Touchbase.Ai Project Touchbase.Ai 1.1.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
LOW Integrity impact
LOW Availability impact
NONE Summary
touchbase.ai before version 2.0 is vulnerable to Cross-Site Scripting (XSS). The vulnerability allows an attacker to send malicious JavaScript code which could result in hijacking of the user's cookie/session tokens, redirecting the user to a malicious webpage and performing unintended browser action. The issue is patched in version 2.0.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |