EUVD-2020-25553

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

IBM Planning Analytics Local 2.0.0-2.0.9 is vulnerable to cross-site scripting leading to credential risks.

Reporter	Title	Published	Views	Family All 6
CNVD	IBM Planning Analytics Cross-Site Scripting Vulnerability (CNVD-2020-30828)	1 Jun 202000:00	–	cnvd
CVE	CVE-2020-4306	29 May 202013:10	–	cve
Cvelist	CVE-2020-4306	29 May 202013:10	–	cvelist
IBM Security Bulletins	Security Bulletin: IBM Planning Analytics has addressed multiple Security Vulnerabilities	28 May 202021:01	–	ibm
NVD	CVE-2020-4306	29 May 202013:15	–	nvd
Prion	Cross site scripting	29 May 202013:15	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "3f4236a3-e8c9-3fd5-8820-6a3dc6af5c11",
        "vendor": {
          "name": "IBM"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "0be128a7-6957-378e-8bf5-430198992888",
        "product": {
          "name": "Planning Analytics Local"
        },
        "product_version": "2.0.9"
      },
      {
        "id": "3bd870fc-7320-3ea8-92f5-5b349e720b61",
        "product": {
          "name": "Planning Analytics Local"
        },
        "product_version": "2.0.0"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/6213263
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/176735
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

5.7Medium risk

Vulners AI Score5.7

CVSS 35.4

CVSS 23.5

CVSS 3.15.4

EPSS0.00236