CVE-2019-11781

Published December 22nd, 2020

View on NVD ↗

CVSS v3

8.8

HIGH

CVSS v2

6.8

MEDIUM

Affected

PROJECT

Description

Improper input validation in portal component in Odoo Community 12.0 and earlier and Odoo Enterprise 12.0 and earlier, allows remote attackers to trick victims into modifying their account via crafted links, leading to privilege escalation.

odoo/odoo

Odoo. Open Source Apps To Grow Your Business.

GitHub

52.4K