Cross-site scripting (XSS) issue in "document" module in Odoo Community 11.0 and previous versions and Odoo Enterprise 11.0 and previous versions, allows remote malicious users to inject arbitrary web script in the browser of a victim via crafted attachment filenames.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
odoo odoo |