Lucene search
PRIOn knowledge basePRION:CVE-2020-9447HistoryFeb 28, 2020 - 4:15 p.m.
Cross site scripting
2020-02-2816:15:00
PRIOn knowledge base
www.prio-n.com
5
0.001 Low
EPSS
Percentile
47.9%
There is an XSS (cross-site scripting) vulnerability in GwtUpload 1.0.3 in the file upload functionality. Someone can upload a file with a malicious filename, which contains JavaScript code, which would result in XSS. Cross-site scripting enables attackers to steal data, change the appearance of a website, and perform other malicious activities like phishing or drive-by hacking.
Related
osv
osv
Cross-site Scripting in GwtUpload
2021-04-22 16:15:33
CVE-2020-9447
2020-02-28 16:15:11
cvelist
cvelist
CVE-2020-9447
2020-02-28 15:07:46
coresecurity
coresecurity
GWTUpload XSS in the File Upload Functionality
2020-03-04 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2020-03-02 09:19:26
Cross-site Scripting (XSS)
2021-04-23 03:41:09
github
github
Cross-site Scripting in GwtUpload
2021-04-22 16:15:33
cve
cve
CVE-2020-9447
2020-02-28 16:15:11
nvd
nvd
CVE-2020-9447
2020-02-28 16:15:11