Design/Logic Flaw

2020-01-0523:15:00

PRIOn knowledge base

www.prio-n.com

4.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.8%

Codoforum 4.8.3 allows XSS in the admin dashboard via a name field of a new user, i.e., on the Manage Users screen.

CPENameOperatorVersion
codoforumeq4.8.3

CPE	Name	Operator	Version
	codoforum	eq	4.8.3

References

codologic.com/forum/index.php?u=/category/news-and-announcements

vyshnavvizz.blogspot.com/2020/01/stored-cross-site-scripting-in_2.html