5 matches found
CVE-2020-20140
Cross Site Scripting XSS vulnerability in Remote Report component under the Open menu in Flexmonster Pivot Table & Charts 2.7.17...
Flexmonster Pivot Table & Charts 2.7.17 - 'Remote Report' Reflected XSS
Exploit Title: Flexmonster Pivot Table & Charts 2.7.17 - 'Remote Report' Reflected XSS Date: 08/01/2020 Exploit Author: Marco Nappi Vendor Homepage: https://www.flexmonster.com/ Version:Flexmonster Pivot Table & Charts 2.7.17 Tested on:Flexmonster Pivot Table & Charts 2.7.17 CVE : CVE-2020-20140...
CVE-2020-20140
creationtimestamp| type| source ---|---|--- 2020-12-18 02:43:16+00:00| seen| https://t.me/cibsecurity/21035 2024-11-14 06:07:33+00:00| seen| MISP/c74284fc-93c3-497f-b788-3775bad035d0...
CVE-2020-20140
CVE-2020-20140 is a reflected XSS in Flexmonster Pivot Table & Charts 2.7.17, affecting the Remote Report component under the Open menu. Exploit details indicate the issue stems from insufficient input sanitization of the 'path' parameter in file_specs.php, enabling payload execution. Affected pr...
CVE-2020-20140
Cross Site Scripting XSS vulnerability in Remote Report component under the Open menu in Flexmonster Pivot Table & Charts 2.7.17...