A storage XSS vulnerability is found in YzmCMS v5.8, which can be used by attackers to inject JS code and attack malicious XSS on the /admin/system_manage/user_config_edit.html page.
References
Link | Resource |
---|---|
https://github.com/yzmcms/yzmcms/issues/54 | Exploit Issue Tracking Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-06-03T20:55:39
Updated: 2021-06-03T20:55:39
Reserved: 2021-01-04T00:00:00
Link: CVE-2020-35971
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-06-03T21:15:07.887
Modified: 2021-06-09T01:12:21.003
Link: CVE-2020-35971
JSON object: View
Redhat Information
No data.
CWE