0.001 Low
EPSS
Percentile
33.3%
idno/known is vulnerable to Cross-site Scripting (XSS). An attacker can inject and execute maliciously crafted payload through the name field in account.tpl.php
name
account.tpl.php
docs.withknown.com/en/latest/install/index.html
blog.jitendrapatro.me/multiple-vulnerabilities-in-idno-known-php-cms-software/
github.com/advisories/GHSA-g688-7j3c-h9f3
github.com/idno/known
withknown.com/