3 matches found
CVE-2020-23327
Cross Site Scripting vulnerability found in ZblogCN ZblogPHP v.1.0 allows a local attacker to execute arbitrary code via a crafted payload in title parameter of the module management model...
CVE-2020-23327
ZblogPHP v1.0 has a Cross-Site Scripting vulnerability in the title parameter of the module management model that could let a local attacker execute arbitrary code. Root cause: improper handling of the title input in ZblogPHP 1.0. Impact is described as local code execution with a low-to-moderate...
CVE-2020-23327
Cross Site Scripting vulnerability found in ZblogCN ZblogPHP v.1.0 allows a local attacker to execute arbitrary code via a crafted payload in title parameter of the module management model...