CVE-2020-24912

2021-03-0412:30:24

mitre

raw.githubusercontent.com

5.6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.5%

JSON

A reflected cross-site scripting (XSS) vulnerability in qcubed (all versions including 3.1.1) in profile.php via the stQuery-parameter allows unauthenticated attackers to steal sessions of authenticated users.