Moderate severityNVD Advisory· Published Oct 22, 2021· Updated Aug 4, 2024
CVE-2020-23049
CVE-2020-23049
Description
Fork CMS Content Management System v5.8.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the Displayname field when using the Add, Edit or `Register' functions. This vulnerability allows attackers to execute arbitrary web scripts or HTML.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
forkcms/forkcmsPackagist | < 5.8.1 | 5.8.1 |
Affected products
2- Fork CMS/Content Management Systemdescription
Patches
Vulnerability mechanics
Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
4- github.com/advisories/GHSA-3374-7h99-xr85ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2020-23049ghsaADVISORY
- github.com/forkcms/forkcms/commit/6ec6171206a7507a39695edc8bbd1b97ef1041c6ghsaWEB
- www.vulnerability-lab.com/get_content.phpghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.