3 matches found
CVE-2020-21052
Cross Site Scripting vulnerability in zrlog zrlog v.2.1.3 allows a remote attacker to execute arbitrary code via the nickame parameter of the /post/addComment function...
CVE-2020-21052
CVE-2020-21052 affects zrlog v2.1.3. The vulnerability is a cross-site scripting (XSS) flaw in the /post/addComment functionality, exploitable via the nickname parameter to execute arbitrary code. The provided sources (NVD and related mirrors) identify the affected product/version and the input p...
CVE-2020-21052
Cross Site Scripting vulnerability in zrlog zrlog v.2.1.3 allows a remote attacker to execute arbitrary code via the nickame parameter of the /post/addComment function...