modules/security/classes/general.post_filter.php/post_filter.php in the Web Application Firewall in Bitrix24 up to and including 20.0.950 allows XSS by placing %00 before the payload.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bitrix bitrix24 |