Medium severity5.4NVD Advisory· Published Jul 9, 2021· Updated Jun 17, 2026
CVE-2020-25392
CVE-2020-25392
Description
A cross site scripting (XSS) vulnerability in CSZ CMS 1.2.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the 'New Article' field under the 'Article' plugin.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- CSZ/CSZ CMSdescription
Patches
Vulnerability mechanics
References
1- sourceforge.net/p/cszcms/tickets/2/nvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.