Medium severity4.8NVD Advisory· Published Dec 4, 2020· Updated Jun 17, 2026
CVE-2020-25449
CVE-2020-25449
Description
Cross Site Scripting (XSS) vulnerability in Arachnys Cabot 0.11.12 can be exploited via the Address column.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
cabotPyPI | <= 0.11.12 | — |
Affected products
2- Arachnys/Cabotdescription
Patches
Vulnerability mechanics
References
8- itsmeanonartist.tech/blogs/blog2.htmlnvdExploitThird Party AdvisoryWEB
- packetstormsecurity.com/files/159070/Cabot-0.11.12-Cross-Site-Scripting.htmlnvdExploitThird Party AdvisoryVDB EntryWEB
- www.exploitalert.com/view-details.htmlnvdExploitThird Party AdvisoryWEB
- github.com/advisories/GHSA-8q2h-4mq6-396jghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2020-25449ghsaADVISORY
- www.exploit-db.com/exploits/48791nvdThird Party AdvisoryVDB EntryWEB
- github.com/arachnys/cabot/commit/18708572cb0ed143842409419eada91160413973ghsaWEB
- github.com/pypa/advisory-database/tree/main/vulns/cabot/PYSEC-2020-226.yamlghsaWEB
News mentions
0No linked articles in our index yet.