CVE-2021-45071

CVSS V2 None CVSS V3 None

Description

Cross-site scripting (XSS) issue Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier, allows remote attackers to inject arbitrary web script in the browser of a victim, via crafted uploaded file names.

Overview

CVE ID
CVE-2021-45071

Assigner
security@odoo.com

Vulnerability Status
Received

Published Version
2023-04-25T19:15:09

Last Modified Date
2023-04-25T19:15:09

References

Reference URL	Reference Tags
https://github.com/odoo/odoo/issues/107697

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2021-45071
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45071

History

Created	Old Value	New Value	Data Type	Notes
2023-04-25 20:02:34				Added to TrackCVE