Disclosure Date 2020/10/05

CVE-2020-5631

Cross-site Scripting in CMONOS.JP

CMONOS.JPのクロスサイトスクリプティング

Credit

stypr (@stereotype32)

Affected-Versions

ver2.0.20191009 and earlier

CWE

CWE-79

Description

Stored cross-site scripting vulnerability in CMONOS.JP ver2.0.20191009 and earlier allows remote attackers to inject arbitrary script in all kinds of inputs.

Product-URLs

  • https://cmonos.jp/

Back