CVE-2020-35240 in FluxBB정보

요약

\~에 의해 MITRE • 2020. 12. 31.

FluxBB 1.5.11 is affected by cross-site scripting (XSS in the Blog Content component. This vulnerability can allow an attacker to inject the XSS payload in &quot;Blog Content&quot; and each time any user will visit the blog, the XSS triggers and the attacker can able to steal the cookie according to the crafted payload.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

공개

2020. 12. 31.

모더레이션

수락

항목

VDB-167059

CPE

준비됨

CWE

CWE-79 (확인됨)

CVSS

3.5 (VulDB)

EPSS

0.00517

KEV

아니요

활동

매우 낮음

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2020-35240
NVD	https://nvd.nist.gov/vuln/detail/CVE-2020-35240
CVE Details	https://www.cvedetails.com/cve/CVE-2020-35240/

◂ 이전 개요 다음 ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!