Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2020-18699

Disclosure Date: August 16, 2021 (last updated February 23, 2025)
Cross Site Scripting (XSS) in Lin-CMS-Flask v0.1.1 allows remote attackers to execute arbitrary code by entering scripts in the the 'Username' parameter of the in component 'app/api/cms/user.py'.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0