CVE-2020-23689
CVE-2020-23689 affects YFCMF v2.3.1, with a stored cross-site scripting (XSS) vulnerability in the news page comments. The issue is evidenced across multiple sources (NVD entry and Red Hat/OSS references) noting a stored XSS in the comments section. The CVSS data indicates a medium severity (CVSS...