CVE-2020-9461

CVE-2020-9461

EPSS 1.3%

Octech Oempro 4.7 through 4.11 allow stored XSS by an authenticated user. The FolderName parameter of the Media.CreateFolder command is vulnerable.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/Guilherme-Rubert/CVE-2020-9461 https://guilhermerubert.com/blog/cve-2020-9460/https://www.octeth.com/