{"vulnerability": "CVE-2020-28647", "sightings": [{"uuid": "2157c2c1-82e1-4350-a3ce-7047450a8e46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-28647", "type": "seen", "source": "https://t.me/cibsecurity/16438", "content": "\u203c CVE-2020-28647 \u203c\n\nIn Progress MOVEit Transfer before 2020.1, a malicious user could craft and store a payload within the application. If a victim within the MOVEit Transfer instance interacts with the stored payload, it could invoke and execute arbitrary code within the context of the victim's browser (XSS).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-17T16:39:04.000000Z"}]}