Medium severity6.1NVD Advisory· Published Sep 25, 2020· Updated Jun 17, 2026
CVE-2020-25139
CVE-2020-25139
Description
An issue was discovered in Observium Professional, Enterprise & Community 20.8.10631. It is vulnerable to Cross-Site Scripting (XSS) due to the fact that it is possible to inject and store malicious JavaScript code within it. This can occur via la_id to the /syslog_rules URI for delete_syslog_rule, because of syslog_rules.inc.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Observium/Observium Professional, Enterprise & Communitydescription
- Range: 20.8.10631
Patches
Vulnerability mechanics
References
1- gist.github.com/mariuszpoplawski/1e7526027aec7a89e78950e5e57d007dnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.