CVE-2020-12274

Published: Apr 27, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

In TestLink 1.9.20, the lib/cfields/cfieldsExport.php goback_url parameter causes a security risk because it depends on client input and is not constrained to lib/cfields/cfieldsView.php at the web site associated with the session.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/TestLinkOpenSourceTRMS/testlink-code/commit/2d17cd00f981f8e8c97de34a12e368ba2a55e3d0

x_refsource_MISC

http://mantis.testlink.org/view.php?id=8894

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-12274

Description

Affected Products

References