Medium severity6.1NVD Advisory· Published Jan 7, 2021· Updated Jun 17, 2026
CVE-2020-24901
CVE-2020-24901
Description
The default installation of Krpano Panorama Viewer version <=1.20.8 is vulnerable to Reflected XSS due to insecure remote js load in file viewer/krpano.html, parameter plugin[test].url.
Affected products
2- Krpano/Krpano Panorama Viewerdescription
- Range: <=1.20.8
Patches
Vulnerability mechanics
References
1- packetstormsecurity.com/files/159477/Krpano-Panorama-Viewer-1.20.8-Cross-Site-Scripting.htmlnvdExploitThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.