A cross site scripting (XSS) vulnerability in the /segments/edit.php component of Domainmod 4.13 allows attackers to execute arbitrary web scripts or HTML via the Segment Name parameter.
References
Link | Resource |
---|---|
https://mycvee.blogspot.com/p/xss1.html | Exploit Third Party Advisory |
Configurations
History
No history.
Information
Published : 2021-08-12 22:15
Updated : 2021-08-16 20:51
NVD link : CVE-2020-20990
Mitre link : CVE-2020-20990
CVE.ORG link : CVE-2020-20990
JSON object : View
Products Affected
domainmod
- domainmod
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')