CVE-2020-20605

MEDIUM WAF: High
CVSS 6.1 Published: 2021-12-22
CWE-79

Blog CMS v1.0 contains a cross-site scripting (XSS) vulnerability in the /controller/CommentAdminController.java component.

WAF Coverage Analysis

Cross-Site Scripting (XSS) High WAF Coverage

OWASP: A03:2021 Injection

941xxx - XSS / XXE

Affected Software

VendorProductVersion
personal_blog_cms_projectpersonal_blog_cms1.0

References

  • github.com (Exploit, Issue Tracking, Patch, Third Party Advisory)
Back to CVE Database