Description

Cross-site scripting vulnerability in Zenphoto versions prior to 1.5.7 allows remote attackers to inject an arbitrary JavaScript via unspecified vectors.

Remediation

References

CVE-2020-5592

Related Vulnerabilities

SharePoint Improper Input Validation Vulnerability (CVE-2011-1989)

WordPress Plugin Chamber Dashboard Business Directory Cross-Site Scripting (3.2.8)

MySQL CVE-2018-2646 Vulnerability (CVE-2018-2646)

WordPress Plugin Better Search Cross-Site Request Forgery (2.5.2)

Ruby on Rails Improper Input Validation Vulnerability (CVE-2010-3933)

Severity

Medium

Classification

CVE-2020-5592 CWE-707 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities