CVE-2020-24709

2020-10-2820:15:13

Google

osv.dev

5.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.0%

JSON

Cross Site Scripting (XSS) vulnerability in Gophish through 0.10.1 via a crafted landing page or email template.

CPENameOperatorVersion
gophisheq0.8.0
gophisheq0.7.1
gophisheq0.10.0
gophisheq0.9.0
gophisheq0.7.0
gophisheq0.5.0
gophisheq0.1.1
gophisheq0.10.1
gophisheq0.4.0
gophisheq0.6.0

Name	Operator	Version
gophish	eq	0.8.0
gophish	eq	0.7.1
gophish	eq	0.10.0
gophish	eq	0.9.0
gophish	eq	0.7.0
gophish	eq	0.5.0
gophish	eq	0.1.1
gophish	eq	0.10.1
gophish	eq	0.4.0
gophish	eq	0.6.0

Rows per page:

1-10 of 141

References

herolab.usd.de/security-advisories/usd-2020-0049/