Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-7jf5-f844-8x96

Опубликовано: 24 мая 2022
Источник: github
Github: Не прошло ревью

Описание

DBHcms v1.2.0 has a stored xss vulnerability as there is no security filter in dbhcms\mod\mod.users.view.php line 57 for user_login, A remote authenticated with admin user can exploit this vulnerability to hijack other users.

DBHcms v1.2.0 has a stored xss vulnerability as there is no security filter in dbhcms\mod\mod.users.view.php line 57 for user_login, A remote authenticated with admin user can exploit this vulnerability to hijack other users.

Ссылки

EPSS

Процентиль: 48%
0.00252
Низкий

CVE ID

CVE-2020-19883

Связанные уязвимости

nvd логотип

CVE-2020-19883

CVSS3: 4.8
nvd
больше 5 лет назад

DBHcms v1.2.0 has a stored xss vulnerability as there is no security filter in dbhcms\mod\mod.users.view.php line 57 for user_login, A remote authenticated with admin user can exploit this vulnerability to hijack other users.

EPSS

Процентиль: 48%
0.00252
Низкий

CVE ID

CVE-2020-19883