Medium severity4.8NVD Advisory· Published Aug 12, 2021· Updated Jun 17, 2026
CVE-2020-18455
CVE-2020-18455
Description
Cross Site Scripting (XSS) vulnerability exists in bycms v3.0.4 via the title parameter in the edit function in Document.php.
Affected products
2- bycms/bycmsdescription
Patches
Vulnerability mechanics
References
1- github.com/hillerlin/bycms/issues/2nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.