Medium severity5.4NVD Advisory· Published Dec 25, 2020· Updated Jun 17, 2026
CVE-2020-35706
CVE-2020-35706
Description
Daybyday 2.1.0 allows stored XSS via the Title parameter to the New Project screen.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Daybyday/Daybydaydescription
- Range: =2.1.0
Patches
Vulnerability mechanics
References
2- tufangungor.github.io/exploit/2020/12/12/daybydaycrm-2.1.0-multiple-stored-xss.htmlnvdExploitThird Party Advisory
- github.com/Bottelet/DaybydayCRM/releasesnvdThird Party Advisory
News mentions
0No linked articles in our index yet.