Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2020-8493
HistoryJan 30, 2020 - 9:18 p.m.

CVE-2020-8493

2020-01-3021:18:31
mitre
www.cve.org
3

CVSS3

6.9

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:H/A:N

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

36.7%

JSON

A stored XSS vulnerability in Kronos Web Time and Attendance (webTA) affects 3.8.x and later 3.x versions before 4.0 via multiple input fields (Login Message, Banner Message, and Password Instructions) of the com.threeis.webta.H261configMenu servlet via an authenticated administrator.

Related

prion 1
nvd 1
cve 1
exploitpack 1
zdt 1
packetstorm 1
exploitdb 1
prion
prion
Cross site scripting
2020-01-30 22:15:00
nvd
nvd
CVE-2020-8493
2020-01-30 22:15:10
cve
cve
CVE-2020-8493
2020-01-30 22:15:10
exploitpack
exploitpack
Kronos WebTA 4.0 - Authenticated Remote Privilege Escalation
2020-02-05 00:00:00
zdt
zdt
Kronos WebTA 4.0 - Authenticated Remote Privilege Escalation Exploit
2020-02-05 00:00:00
packetstorm
packetstorm
Kronos WebTA 4.0 Privilege Escalation / Cross Site Scripting
2020-02-05 00:00:00
exploitdb
exploitdb
Kronos WebTA 4.0 - Authenticated Remote Privilege Escalation
2020-02-05 00:00:00

CVSS3

6.9

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:H/A:N

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

36.7%

JSON
Related for CVELIST:CVE-2020-8493
prion1nvd1cve1exploitpack1zdt1packetstorm1exploitdb1