CVE-2020-8612 - Progess Moveit Transfer and Progress Moveit Transfer
Critical 9.0
In Progress MOVEit Transfer 2019.1 before 2019.1.4 and 2019.2 before 2019.2.1, a REST API endpoint failed to adequately sanitize malicious input, which could allow an authenticated attacker to execute arbitrary code in a victim's browser, aka XSS.
Affected software
Progess Moveit Transfer
Progress Moveit Transfer