Sitecore: >> Experience Platform Security Vulnerabilities
Cross-Site Scripting (XSS) in "/sitecore/client/Applications/List Manager/Taskpages/Contact list" in Sitecore Experience Platform 8.1 rev. 160519 (8.1 Update-3) allows remote attacks via the Name or Description parameter. This is fixed in 8.2 Update-2.
CVSS Score
6.1
EPSS Score
0.003
Published
2017-03-19
Page 3