BooleBox Stored Cross-Site Scripting (CVE-2020-13248)
A stored cross-site scripting vulnerability exists in BooleBox. This vulnerability is due to insufficient validation of user avatar json parameter. Successful exploitation could result in execution of arbitrary scripts on the affected system...