3 matches found
CVE-2020-18982
Cross Sie Scripting XSS vulnerability in Halo 0.4.3 via CommentAuthorUrl...
CVE-2020-18982
Cross Sie Scripting XSS vulnerability in Halo 0.4.3 via CommentAuthorUrl...
CVE-2020-18982
CVE-2020-18982 is a Cross-Site Scripting (XSS) vulnerability affecting Halo version 0.4.3, exploitable via the CommentAuthorUrl parameter. The incident is documented across multiple feeds (NVD, Red Hat, CNVD, OSV, etc.) with consistent wording: Halo 0.4.3 is vulnerable to XSS through CommentAutho...