CVE-2020-23518
CVE-2020-23518 is a Cross Site Scripting (XSS) vulnerability in UltimateKode Neo Billing (Envato/Neo Billing) up to version 3.5. The issue allows remote attackers to inject arbitrary web script or HTML, with evidence of stored XSS in the Neo Billing 3.5 release via manipulated fields (e.g., Subje...