CVE-2020-10461

Posted on 2020년 3월 12일2020년 3월 13일 by admin

CVE-2020-10461

The way comments in article.php (vulnerable function in include/functions-article.php) are handled in Chadha PHPKB Standard Multi-Language 9 allows attackers to execute Stored (Blind) XSS (injecting arbitrary web script or HTML) in admin/manage-comments.php, via the GET parameter cmt.

Source: CVE-2020-10461

답글 남기기 응답 취소