3 matches found
CVE-2020-23046
DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting XSS vulnerabilities in the component tpl.php via the filename, mid, userid, and templet' parameters...
CVE-2020-23046
DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting XSS vulnerabilities in the component tpl.php via the filename, mid, userid, and templet' parameters...
CVE-2020-23046
DedeCMS v7.5 SP2 contains multiple cross-site scripting (XSS) vulnerabilities in the tpl.php component, exploitable via the filename, mid, userid, and templet parameters. The CVE records indicate an XSS flaw affecting this release without detailing the exploit vector beyond parameter abuse. The c...