2 matches found
CVE-2020-21729
JEECMS x1.1 contains a stored cross-site scripting XSS vulnerability in the component of /member-vipcenter.htm, which allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2020-21729
CVE-2020-21729 affects JEECMS (x1.1). The vulnerability is a stored XSS in the /member-vipcenter.htm component, allowing an attacker to inject and execute arbitrary web scripts or HTML via a crafted payload. The issue stems from unvalidated input on that page. Documented impact is client-side cod...