Medium severity5.4NVD Advisory· Published Nov 5, 2020· Updated Jun 17, 2026
CVE-2020-28047
CVE-2020-28047
Description
AudimexEE before 14.1.1 is vulnerable to Reflected XSS (Cross-Site-Scripting). If the recommended security configuration parameter "unique_error_numbers" is not set, remote attackers can inject arbitrary web script or HTML via 'action, cargo, panel' parameters that can lead to data leakage.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <14.1.1
Patches
Vulnerability mechanics
References
1- github.com/piuppi/Proof-of-Concepts/blob/main/AudimexEE/Reflected-XSS.mdnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.