CVE-2020-14943
CVE-2020-14943
The Firstname and Lastname parameters in Global RADAR BSA Radar 1.6.7234.24750 and earlier are vulnerable to stored cross-site scripting (XSS) via Update User Profile.
Affected products
n/a · n/apublic PoCs found — 2
cve_referencepacketstormsecurity.com/files/158217/BSA-Radar-1.6.7234.24750-Cross-Site-Scripting.htmlunverifiedcve_referencewww.exploit-db.com/exploits/48619unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://packetstormsecurity.com/files/158217/BSA-Radar-1.6.7234.24750-Cross-Site-Scripting.htmlhttps://github.com/wsummerhill/BSA-Radar_CVE-Vulnerabilitieshttps://github.com/wsummerhill/BSA-Radar_CVE-Vulnerabilities/blob/master/CVE-2020-14943%20-%20Stored%20XSS.mdhttps://www.exploit-db.com/exploits/48619