Page 2 of 6 results (0.002 seconds)
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 2
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 2CVE-2020-35395
https://notcve.org/view.php?id=CVE-2020-35395
XSS in the Add Expense Component of EGavilan Media Expense Management System 1.0 allows an attacker to permanently store malicious JavaScript code via the 'description' field Una vulnerabilidad de tipo XSS en el componente Add Expense de EGavilan Media Expense Management System versión 1.0, permite a un atacante almacenar permanentemente código JavaScript malicioso por medio del campo "description" • https://nikhilkumar01.medium.com/cve-2020-35395-cd393ac8371c https://www.exploit-db.com/exploits/49146 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •