Medium severity5.4NVD Advisory· Published Sep 1, 2020· Updated Jun 17, 2026
CVE-2020-23450
CVE-2020-23450
Description
Spiceworks Version <= 7.5.00107 is affected by XSS. Any name typed on Custom Groups function is vulnerable to stored XSS as they displayed on http://127.0.0.1/inventory/groups/ without output sanitization.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Spiceworks/Spiceworksdescription
- Range: <=7.5.00107
Patches
Vulnerability mechanics
References
3- abuyv.com/cve/spiceworks-stored-xssnvdExploitThird Party Advisory
- spiceworks.comnvdVendor Advisory
- abuyv.comnvdThird Party Advisory
News mentions
0No linked articles in our index yet.