CVE-2020-23048
SeedDMS Content Management System v6.0.7 contains a persistent cross-site scripting (XSS) vulnerability in the AddEvent.php component, exploitable via the name and comment parameters. The issue is confirmed in multiple sources (CVE-2020-23048; RH, NVD, CNVD, CVE lists) and affects the AddEvent.ph...