Lucene search

CVE-2020-29456

🗓️ 02 Dec 2020 08:10:15Reported by mitreType

Multiple XSS vulnerabilities in Papermerge before 1.5.2 allow remote attackers to inject arbitrary web script or HTML

Reporter	Title	Published	Views	Family All 8
Prion	Cross site scripting	2 Dec 202008:15	–	prion
OSV	PYSEC-2020-74	2 Dec 202008:15	–	osv
OSV	CVE-2020-29456	2 Dec 202008:15	–	osv
OSV	Cross-site scripting in papermerge	20 Apr 202116:37	–	osv
Huntr	Cross-site Scripting (XSS) - Generic in ciur/papermerge	6 Feb 202100:00	–	huntr
NVD	CVE-2020-29456	2 Dec 202008:15	–	nvd
Github Security Blog	Cross-site scripting in papermerge	20 Apr 202116:37	–	github
Cvelist	CVE-2020-29456	2 Dec 202007:50	–	cvelist

Nvd

Node

papermerge papermergeRange<1.5.2

Source	Link
papermerge	www.papermerge.com/
github	www.github.com/ciur/papermerge/issues/228
github	www.github.com/ciur/papermerge/releases/tag/v1.5.2

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

02 Dec 2020 08:15Current

6Medium risk

Vulners AI Score6

CVSS24.3

CVSS36.1

EPSS0.00097

CWE-79