← Back to CVE List

CVE-2020-9028

Published: 2020-02-17T04:15Z
Last Modified: 2024-11-21T05:39Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow stored XSS via the newUserName parameter on the "User Creation, Deletion and Password Maintenance" screen (when creating a new user). > MITRE Terms of Use apply – see LICENSE‑MITRE.txt