Medium severity5.4NVD Advisory· Published Sep 15, 2020· Updated Jun 17, 2026
CVE-2020-24924
CVE-2020-24924
Description
A Persistent Cross-site Scripting vulnerability is found in ElkarBackup v1.3.3, where an attacker can steal the user session cookie using this vulnerability present on Policies >> action >> Name Parameter
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- ElkarBackup/ElkarBackupdescription
- Range: =1.3.3
Patches
Vulnerability mechanics
References
3- github.com/sooraj24/new/blob/master/XSS%20in%20ElkarBackupnvdExploitThird Party Advisory
- vyshnavvizz.blogspot.com/2020/09/stored-cross-site-scripting-in.htmlnvdExploitThird Party Advisory
- www.elkarbackup.orgnvdProduct
News mentions
0No linked articles in our index yet.