From 539d09cea29708d06021f3ec4344593ff9554895 Mon Sep 17 00:00:00 2001 From: CVE Team Date: Wed, 11 Nov 2020 23:01:46 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2020/26xxx/CVE-2020-26218.json | 2 +- 2020/26xxx/CVE-2020-26219.json | 2 +- 2020/26xxx/CVE-2020-26221.json | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/2020/26xxx/CVE-2020-26218.json b/2020/26xxx/CVE-2020-26218.json index 1330b95ffcc..43cfaa94d5c 100644 --- a/2020/26xxx/CVE-2020-26218.json +++ b/2020/26xxx/CVE-2020-26218.json @@ -35,7 +35,7 @@ "description_data": [ { "lang": "eng", - "value": "touchbase.ai before version 2.0 is vulnerable to Cross-Site Scripting. The vulnerability allows an attacker to inject HTML payloads which could result in defacement, user redirection to a malicious webpage/website etc. \n\nThe issue is patched in version 2.0." + "value": "touchbase.ai before version 2.0 is vulnerable to Cross-Site Scripting. The vulnerability allows an attacker to inject HTML payloads which could result in defacement, user redirection to a malicious webpage/website etc. The issue is patched in version 2.0." } ] }, diff --git a/2020/26xxx/CVE-2020-26219.json b/2020/26xxx/CVE-2020-26219.json index 2d5a23b54ab..cadf164c38c 100644 --- a/2020/26xxx/CVE-2020-26219.json +++ b/2020/26xxx/CVE-2020-26219.json @@ -35,7 +35,7 @@ "description_data": [ { "lang": "eng", - "value": "touchbase.ai before version 2.0 is vulnerable to Open Redirect. Impacts can be many, and vary from theft of information and credentials, to the redirection to malicious websites containing attacker-controlled content, which in some cases even cause XSS attacks. So even though an open redirection might sound harmless at first, the impacts of it can be severe should it be exploitable.\nThe issue is fixed in version 2.0." + "value": "touchbase.ai before version 2.0 is vulnerable to Open Redirect. Impacts can be many, and vary from theft of information and credentials, to the redirection to malicious websites containing attacker-controlled content, which in some cases even cause XSS attacks. So even though an open redirection might sound harmless at first, the impacts of it can be severe should it be exploitable. The issue is fixed in version 2.0." } ] }, diff --git a/2020/26xxx/CVE-2020-26221.json b/2020/26xxx/CVE-2020-26221.json index 803a375e63e..4143757a4c8 100644 --- a/2020/26xxx/CVE-2020-26221.json +++ b/2020/26xxx/CVE-2020-26221.json @@ -35,7 +35,7 @@ "description_data": [ { "lang": "eng", - "value": "touchbase.ai before version 2.0 is vulnerable to Cross-Site Scripting (XSS). The vulnerability allows an attacker to send malicious JavaScript code which could result in hijacking of the user's cookie/session tokens, redirecting the user to a malicious webpage and performing unintended browser action.\n\nThe issue is patched in version 2.0." + "value": "touchbase.ai before version 2.0 is vulnerable to Cross-Site Scripting (XSS). The vulnerability allows an attacker to send malicious JavaScript code which could result in hijacking of the user's cookie/session tokens, redirecting the user to a malicious webpage and performing unintended browser action. The issue is patched in version 2.0." } ] },