CVE-2017-20060 in Elefantinfo

Summary

by MITRE • 06/20/2022

A vulnerability, which was classified as problematic, was found in Elefant CMS 1.3.12-RC. This affects an unknown part of the component Blog Post Handler. The manipulation leads to basic cross site scripting (Persistent). It is possible to initiate the attack remotely. Upgrading to version 1.3.13 is able to address this issue. It is recommended to upgrade the affected component.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

VulDB

Disclosure

06/20/2022

Moderation

accepted

Entry

VDB-97257

CPE

ready

CWE

CWE-80 (confirmed)

CVSS

3.5 (VulDB)

EPSS

0.00206

KEV

Activities

very low

Sector

Lawfirm, Agriculture, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-20060
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-20060
CVE Details	https://www.cvedetails.com/cve/CVE-2017-20060/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!