CVE-2020-11712

CVE-2020-11712

EPSS 1.1%

Open Upload through 0.4.3 allows XSS via index.php?action=u and the filename field.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/jenaye/cve/blob/master/readme.MD https://sourceforge.net/p/openupload/news/https://sourceforge.net/p/openupload/openupload-code/commit_browser