3 matches found
CVE-2020-23039
Folder Lock v3.4.5 was discovered to contain a stored cross-site scripting XSS vulnerability in the Create Folder function under the 'create' module. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload as a path or folder name...
CVE-2020-23039
Folder Lock v3.4.5 was discovered to contain a stored cross-site scripting XSS vulnerability in the Create Folder function under the 'create' module. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload as a path or folder name...
CVE-2020-23039
CVE-2020-23039 concerns Folder Lock v3.4.5, where a stored XSS vulnerability exists in the Create Folder function (Create module). The underlying issue is lack of data validation/filtering for user-supplied data in folder names/paths, allowing an attacker to inject arbitrary web scripts or HTML t...