CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-26218

touchbase.ai before version 2.0 is vulnerable to Cross-Site Scripting. The vulnerability allows an attacker to inject HTML payloads which could result in defacement, user redirection to a malicious webpage/website etc. The issue is patched in version 2.0.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.031

EPSS Ranking 86.3%

CVSS Severity

CVSS v3 Score 8.0

CVSS v2 Score 4.3

References

https://github.com/puncsky/touchbase.ai/security/advisories/GHSA-r4w5-gw36-4792
https://github.com/puncsky/touchbase.ai/security/advisories/GHSA-r4w5-gw36-4792

Products affected by CVE-2020-26218

Touchbase.ai Project » Touchbase.ai » Version: 1.1.0

cpe:2.3:a:touchbase.ai_project:touchbase.ai:1.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-26218

Products

Pricing

Contact Us