CVE-2020-35124

🗓️ 28 Jan 2021 06:13:15Reported by [email protected]Type

A XSS vulnerability in Mautic before version 3.2.

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 15
cvelist	CVE-2020-35124	28 Jan 202105:37	–	cvelist
cvelist	CVE-2020-35125	9 Feb 202121:39	–	cvelist
osv	XSS vulnerability leveraged through referrers could allow un-authorized admin access in Mautic	19 Jan 202120:43	–	osv
osv	CVE-2020-35124	28 Jan 202106:15	–	osv
osv	CVE-2020-35125	9 Feb 202122:15	–	osv
prion	Cross site scripting	28 Jan 202106:15	–	prion
prion	Cross site scripting	9 Feb 202122:15	–	prion
cnvd	Mautic cross-site scripting vulnerability (CNVD-2021-07536)	30 Jan 202100:00	–	cnvd
cve	CVE-2020-35124	28 Jan 202106:15	–	cve
cve	CVE-2020-35125	9 Feb 202122:15	–	cve

Nvd

Node

acquia mauticRange<3.2.4

Source	Link
horizon3	www.horizon3.ai/disclosures/mautic-unauth-xss-to-rce
mautic	www.mautic.org/blog/community/security-release-all-versions-mautic-prior-2-16-5-and-3-2-4
forum	www.forum.mautic.org/c/announcements/16
github	www.github.com/mautic/mautic/security/advisories/GHSA-39wj-j3jc-858m

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

28 Jan 2021 06:15Current

8.2High risk

Vulners AI Score8.2

CVSS26.8

CVSS39.6

EPSS0.01142

CWE-79