An issue was discovered in DigDash 2018R2 before p20200528, 2019R1 before p20200528, 2019R2 before p20200430, and 2020R1 before p20200507. A cross-site scripting (XSS) vulnerability exists in the login menu.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13652
Reference (s):
- https://know.bishopfox.com/advisories/digdash-version-2018