Security Advisory

CVE-2020-29240

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-12-02 16:45:16

Last updated 2024-08-04 16:48:01

Assigner mitre

State PUBLISHED

Description

Lepton-CMS 4.7.0 is affected by cross-site scripting (XSS). An attacker can inject the XSS payload in the URL field of the admin page and each time an admin visits the Menu-Pages-Pages Overview section, the XSS will be triggered.

← Browse all CVEs View on cve.org ↗