2 matches found
CVE-2020-9405
IBL Online Weather before 4.3.5a allows unauthenticated reflected XSS via the redirect page...
CVE-2020-9405
CVE-2020-9405 affects IBL Online Weather prior to 4.3.5a. The vulnerability is an unauthenticated reflected XSS via the redirect page, stemming from insufficient input validation on client-side data; exploitation would enable running client-side scripts in the context of the affected site. No exp...