CVE-2020-20600

MEDIUM WAF: High
CVSS 5.4 Published: 2021-12-22
CWE-79

MetInfo 7.0 beta contains a stored cross-site scripting (XSS) vulnerability in the $name parameter of admin/?n=column&c=index&a=doAddColumn.

WAF Coverage Analysis

Cross-Site Scripting (XSS) High WAF Coverage

OWASP: A03:2021 Injection

941xxx - XSS / XXE

Affected Software

VendorProductVersion
metinfometinfo7.0.0

References

Back to CVE Database