Loading
SysAid 20.1.11b26 allows reflected XSS via the ForgotPassword.jsp accountid parameter.
Use CWE-79, Sysaid vendor hub and Sysaid On-Premises product page to widen CVE-2020-13168 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2023-32225 and CVE-2023-32226 for nearby disclosures in the same product family.