← back
CVE-2020-36637

Chris92de AdminServ adminserv.php cross site scripting

CVSS 3.5 LOWEPSS 0.5%CWE-79
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Chris92de AdminServ. It has been declared as problematic. This vulnerability affects unknown code of the file resources/core/adminserv.php. The manipulation of the argument text leads to cross site scripting. The attack can be initiated remotely. The patch is identified as 3ed17dab3b4d6e8bf1c82ddfbf882314365e9cd7. It is recommended to apply a patch to fix this issue. VDB-217042 is the identifier assigned to this vulnerability. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
Affected products
Chris92de · AdminServ

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/Chris92de/AdminServ/commit/3ed17dab3b4d6e8bf1c82ddfbf882314365e9cd7https://github.com/Chris92de/AdminServ/pull/7https://vuldb.com/?ctiid.217042https://vuldb.com/?id.217042