2 matches found
CVE-2020-5619
Cross-site scripting vulnerability in Exment prior to v3.6.0 allows remote authenticated attackers to inject arbitrary script or HTML via unspecified vectors...
CVE-2020-5619
Exment v3.6.0 and earlier is vulnerable to cross-site scripting (stored XSS). The vulnerability arises from inadequate validation of client data, allowing remote authenticated attackers to inject and execute arbitrary script or HTML in a user’s browser when viewing affected pages. Public referenc...