Medium severity4.8NVD Advisory· Published Dec 26, 2020· Updated Jun 17, 2026
CVE-2020-35346
CVE-2020-35346
Description
CXUUCMS V3 3.1 is affected by a reflected XSS vulnerability that allows remote attackers to inject arbitrary web script or HTML via the imgurl parameter of admin.php?c=content&a=add.
Affected products
3- CXUUCMS V3/CXUUCMS V3description
Patches
Vulnerability mechanics
References
1- github.com/cbkhwx/cxuucmsv3/issues/4nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.