Lucene search
Veracode Vulnerability DatabaseVERACODE:29050HistoryJan 20, 2021 - 6:33 p.m.
Cross-Site Scripting (XSS)
2021-01-2018:33:30
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.004 Low
EPSS
Percentile
72.7%
mautic/core is vulnerable to cross-site scripting. An attacker is able to inject arbitrary Javascript in a user’s browser which could potentially result in the attacker gaining administrator privilege.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mautic/core | le | 2.16.4 | |
| mautic/core | le | 3.2.3 |
Related
cve
cve
CVE-2020-35124
2021-01-28 06:15:13
CVE-2020-35125
2021-02-09 22:15:13
osv
osv
XSS vulnerability leveraged through referrers could allow un-authorized admin access in Mautic
2021-01-19 20:43:56
CVE-2020-35124
2021-01-28 06:15:13
CVE-2020-35125
2021-02-09 22:15:13
prion
prion
Cross site scripting
2021-01-28 06:15:00
Cross site scripting
2021-02-09 22:15:00
friendsofphp
friendsofphp
nvd
nvd
CVE-2020-35124
2021-01-28 06:15:13
CVE-2020-35125
2021-02-09 22:15:13
github
github
cvelist
cvelist
CVE-2020-35124
2021-01-28 05:37:56
CVE-2020-35125
2021-02-09 21:39:33