Unrated severityNVD Advisory· Published Feb 13, 2020· Updated Aug 4, 2024
CVE-2020-7051
CVE-2020-7051
Description
Codologic Codoforum through 4.8.4 allows stored XSS in the login area. This is relevant in conjunction with CVE-2020-5842 because session cookies lack the HttpOnly flag. The impact is account takeover.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
2- codologic.com/forum/index.phpmitrex_refsource_CONFIRM
- www.linkedin.com/posts/polina-voronina-896819b5_discovered-by-polina-voronina-jan-15-activity-6634436086540054528-dDgg/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.