2 matches found
CVE-2020-19290
A stored cross-site scripting XSS vulnerability in the /weibo/comment component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the Weibo comment section...
CVE-2020-19290
CVE-2020-19290 is a stored cross-site scripting (XSS) vulnerability in the Jeesns 1.4.2 application, specifically in the /weibo/comment component. The issue enables an attacker to inject and execute arbitrary web scripts or HTML via a crafted payload submitted in Weibo comments. Connected sources...