4.3
CVSSv2

CVE-2020-13758

Published: 01/06/2020 Updated: 02/06/2020
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Vulnerability Summary

modules/security/classes/general.post_filter.php/post_filter.php in the Web Application Firewall in Bitrix24 up to and including 20.0.950 allows XSS by placing %00 before the payload.

Vulnerability Trend

Affected Products

Vendor Product Versions
BitrixBitrix2420.0.950