Disclosure Date 2020/11/05

CVE-2020-5663

Stored Cross-site Scripting in XooNIps

XooNIpsの格納型クロスサイトスクリプティング

Credit

stypr (@stereotype32)

Affected-Versions

XooNIps 3.49 and earlier

CWE

CWE-79

Description

XooNIps 3.49 and earlier was affected by Stored Cross-Site Scripting (XSS). This allows remote attackers to execute arbitrary javascript code from victim's browser.

Back