Reflected cross-site scripting vulnerability (XSS) in the evoadm.php file in b2evolution cms version 6.11.6-stable allows remote attackers to inject arbitrary webscript or HTML code via the tab3 parameter.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/161363/b2evolution-CMS-6.11.6-Cross-Site-Scripting.html | Exploit Third Party Advisory |
https://sohambakore.medium.com/b2evolution-cms-reflected-xss-in-tab-type-parameter-in-evoadm-php-38886216cdd3 | Exploit Third Party Advisory |
https://www.exploit-db.com/exploits/49555 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-02-09T19:39:05
Updated: 2021-02-12T06:26:26
Reserved: 2020-08-13T00:00:00
Link: CVE-2020-22839
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-02-09T20:15:12.940
Modified: 2021-02-12T21:38:27.870
Link: CVE-2020-22839
JSON object: View
Redhat Information
No data.
CWE