3 matches found
CVE-2020-7809
ALSong 3.46 and earlier version contain a Document Object Model DOM based cross-site scripting vulnerability caused by improper validation of user input. A remote attacker could exploit this vulnerability by tricking the victim to open ALSong Albumsab file...
CVE-2020-7809 Estsoft ALSong DOM-Based XSS Vulnerability
ALSong 3.46 and earlier version contain a Document Object Model DOM based cross-site scripting vulnerability caused by improper validation of user input. A remote attacker could exploit this vulnerability by tricking the victim to open ALSong Albumsab file...
CVE-2020-7809
CVE-2020-7809 affects ALSong 3.46 and earlier. The vulnerability is a DOM-based cross-site scripting issue caused by improper validation of user input within ALSong, exploited when a victim is tricked into opening an ALSong Album(sab) file. The Red Hat and CNVD entries corroborate the same descri...