Unrated severityNVD Advisory· Published May 10, 2021· Updated Aug 4, 2024
CVE-2020-23373
CVE-2020-23373
Description
Cross-site scripting (XSS) vulnerability in admin/nav/add.html in noneCMS v1.3.0 allows remote authenticated attackers to inject arbitrary web script or HTML via the name parameter.
Affected products
2- noneCMS/noneCMSdescription
Patches
Vulnerability mechanics
References
1- github.com/nangge/noneCms/issues/33mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.