CVE-2020-27533 – DedeCMS v.5.8 - _keyword_ Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2020-27533
A Cross Site Scripting (XSS) issue was discovered in the search feature of DedeCMS v.5.8 that allows malicious users to inject code into web pages, and other users will be affected when viewing web pages. Se detectó un problema de tipo Cross Site Scripting (XSS) en la funcionalidad de búsqueda de DedeCMS versión v.5.8, que permite a usuarios maliciosos inyectar código en páginas web, y otros usuarios estarán afectados cuando se visualiza páginas web DedeCMS version 5.8 suffers from a cross site scripting vulnerability. • https://www.exploit-db.com/exploits/48974 http://packetstormsecurity.com/files/159772/DedeCMS-5.8-Cross-Site-Scripting.html https://github.com/dedetech/issues/issues/16 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •