mirror of
https://github.com/0xMarcio/cve.git
synced 2025-06-07 05:26:37 +00:00
723 B
723 B
CVE-2019-17220
Description
Rocket.Chat before 2.1.0 allows XSS via a URL on a ![title] line.
POC
Reference
- http://packetstormsecurity.com/files/154944/Rocket.Chat-2.1.0-Cross-Site-Scripting.html
- http://packetstormsecurity.com/files/154944/Rocket.Chat-2.1.0-Cross-Site-Scripting.html
- https://www.nezami.me/
- https://www.nezami.me/