Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2020-23376
HistoryMay 10, 2021 - 10:12 p.m.

CVE-2020-23376

2021-05-1022:12:53
mitre
www.cve.org
5
nonecms
csrf
vulnerability
nav/add.html
stored xss attack

EPSS

0.001

Percentile

31.0%

JSON

NoneCMS v1.3 has a CSRF vulnerability in public/index.php/admin/nav/add.html, as demonstrated by adding a navigation column which can be injected with arbitrary web script or HTML via the name parameter to launch a stored XSS attack.

Related

prion 1
cve 1
osv 1
nvd 1
prion
prion
Cross site request forgery (csrf)
2021-05-10 23:15:00
cve
cve
CVE-2020-23376
2021-05-10 23:15:07
osv
osv
CVE-2020-23376
2021-05-10 23:15:07
nvd
nvd
CVE-2020-23376
2021-05-10 23:15:07

EPSS

0.001

Percentile

31.0%

JSON
Related for CVELIST:CVE-2020-23376
prion1cve1osv1nvd1