CVE-2020-8612

Published: 2020-02-14T19:15Z

Last Modified: 2024-11-21T05:39Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

In Progress MOVEit Transfer 2019.1 before 2019.1.4 and 2019.2 before 2019.2.1, a REST API endpoint failed to adequately sanitize malicious input, which could allow an authenticated attacker to execute arbitrary code in a victim's browser, aka XSS. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt