3 matches found
CVE-2020-25876
A stored cross site scripting XSS vulnerability in the 'Pages' feature of Codoforum v5.0.2 allows authenticated attackers to execute arbitrary web scripts or HTML via crafted payload entered into the 'Page Title' parameter...
CVE-2020-25876
The CVE-2020-25876 entry concerns Codoforum v5.0.2 with a stored XSS vulnerability in the Pages feature. The issue allows authenticated attackers to inject arbitrary web scripts or HTML via the Page Title parameter, implying a stored payload that could execute in victims’ browsers when loading a ...
CVE-2020-25876
A stored cross site scripting XSS vulnerability in the 'Pages' feature of Codoforum v5.0.2 allows authenticated attackers to execute arbitrary web scripts or HTML via crafted payload entered into the 'Page Title' parameter...