Unrated severityNVD Advisory· Published Jul 2, 2021· Updated Aug 4, 2024
CVE-2020-23181
CVE-2020-23181
Description
A reflected cross site scripting (XSS) vulnerability in /administration/theme.php of PHP-Fusion 9.03.60 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the "Manage Theme" field.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- PHP-Fusion/PHP-Fusiondescription
- Range: =9.03.60
Patches
Vulnerability mechanics
References
1- github.com/phpfusion/PHPFusion/issues/2326mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.