Unrated severityNVD Advisory· Published May 15, 2020· Updated Aug 4, 2024
Estsoft ALSong DOM-Based XSS Vulnerability
CVE-2020-7809
Description
ALSong 3.46 and earlier version contain a Document Object Model (DOM) based cross-site scripting vulnerability caused by improper validation of user input. A remote attacker could exploit this vulnerability by tricking the victim to open ALSong Album(sab) file.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.altools.co.kr/support/Notice_Contents.aspxmitrex_refsource_MISC
- www.boho.or.kr/krcert/secNoticeView.domitrex_refsource_MISC
News mentions
0No linked articles in our index yet.