3 matches found
CVE-2020-28146
Cross Site Scripting XSS vulnerability exists in Eyoucms v1.4.7 and earlier via the addonfieldext parameter...
CVE-2020-28146
creationtimestamp| type| source ---|---|--- 2021-08-18 20:16:56+00:00| seen| https://t.me/cibsecurity/27544...
CVE-2020-28146
CVE-2020-28146 affects Eyoucms up to v1.4.7. The vulnerability is a Cross Site Scripting (XSS) flaw triggered via the addonfieldext parameter, stemming from lack of validation/escaping. Documented impact is client-side script execution with potential partial integrity impact (per CVSS metrics: CV...