CVE-2020-35310

Опубликовано: 26 янв. 2021

Источник: nvd

Описание

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none NOTE: This is disputed by the vendor; "We have no records of contact with the original reporter, and have not been able to reproduce any issue.

Связанные уязвимости

GHSA-m4p6-m6rh-mg74

github

больше 3 лет назад

Composr CMS 10.0.34 is affected by cross-site scripting (XSS) which allows remote attackers to inject an arbitrary web script or HTML via Add Banners in the Description field.