2 matches found
CVE-2020-25392
A cross site scripting XSS vulnerability in CSZ CMS 1.2.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the 'New Article' field under the 'Article' plugin...
CVE-2020-25392
CVE-2020-25392 affects CSZ CMS 1.2.9. The connected sources describe a Cross-Site Scripting (XSS) vulnerability exploitable through a crafted payload entered in the New Article field under the Article plugin, allowing execution of arbitrary web scripts/HTML in a user’s browser. The Red Hat/CNVD e...