Lucene search

K

AttackerKBAKB:F8C23A35-5167-4137-8DDD-C6392B0A4B5D

HistoryFeb 22, 2020 - 12:00 a.m.

CVE-2020-9339

2020-02-2200:00:00

attackerkb.com

13

EPSS

0.001

Percentile

24.8%

SOPlanning 1.45 allows XSS via the Name or Comment to status.php.

Recent assessments:

horshark at March 09, 2020 8:38pm UTC reported:

Recap

Javascript execution.

Where

On the ip/www/status.php page, you can execute Javascript in the name and comment fields.

Assessed Attacker Value: 2
Assessed Attacker Value: 2Assessed Attacker Value: 5

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9339

github.com/0xEmma/CVEs/blob/master/CVEs/2020-02-14-SoPlanning-Status-XSS.md

EPSS

0.001

Percentile

24.8%

Related for AKB:F8C23A35-5167-4137-8DDD-C6392B0A4B5D

nvd1 prion1 cvelist1 cve1