CVE-2020-36638

Chris92de AdminServ adminserv.php cross site scripting

CVSS 3.5 LOWEPSS 0.5%CWE-79

** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Chris92de AdminServ. It has been rated as problematic. This issue affects some unknown processing of the file resources/core/adminserv.php. The manipulation of the argument error leads to cross site scripting. The attack may be initiated remotely. The patch is named 9a45087814295de6fb3a3fe38f96293665234da1. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-217043. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Productos afectados

Chris92de · AdminServ

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://github.com/Chris92de/AdminServ/commit/9a45087814295de6fb3a3fe38f96293665234da1 https://github.com/Chris92de/AdminServ/pull/6 https://vuldb.com/?ctiid.217043 https://vuldb.com/?id.217043