2 matches found
CVE-2020-36495
DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting XSS vulnerabilities in the component filemanageview.php via the filename, mid, userid, and templet' parameters...
CVE-2020-36495
DedeCMS v7.5 SP2 contains multiple cross-site scripting (XSS) vulnerabilities in the component file_manage_view.php . The issue is triggered via input params filename , mid , userid , and templet’ . Exploitation details (payloads, exploit vectors, or in‑the‑wild activity) are not provided in the ...