CVE-2020-28464
Published
CVSS v3
9.8
CRITICAL
CVSS v2
10
HIGH
Affected
1
PROJECT
Description
This affects the package djv before 2.1.4. By controlling the schema file, an attacker can run arbitrary JavaScript code on the victim machine.
This affects the package djv before 2.1.4. By controlling the schema file, an attacker can run arbitrary JavaScript code on the victim machine.
GitHub