VYPR
Medium severity5.4NVD Advisory· Published Sep 15, 2021· Updated Jun 17, 2026

CVE-2020-19156

CVE-2020-19156

Description

Cross Site Scripting (XSS) in Ari Adminer v1 allows remote attackers to execute arbitrary code via the 'Title' parameter of the 'Add New Connections' component when the 'save()' function is called.

Affected products

2
  • Ari Adminer/Ari Adminerdescription
  • Ari/Adminerllm-create
    Range: <=v1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.