Medium severity5.4NVD Advisory· Published Oct 14, 2021· Updated Jun 17, 2026
CVE-2020-19962
CVE-2020-19962
Description
A stored cross-site scripting (XSS) vulnerability in the getClientIp function in /lib/tinwin.class.php of Chaoji CMS 2.39, allows attackers to execute arbitrary web scripts.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Chaoji CMS/Chaoji CMSdescription
- Range: <2.39
Patches
Vulnerability mechanics
References
1- github.com/zhuxianjin/vuln_repo/blob/master/chaojicms_stored_xss.mdnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.