Security Advisory

CVE-2020-7051

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-02-13 15:43:24

Last updated 2024-08-04 09:18:02

Assigner mitre

State PUBLISHED

Description

Codologic Codoforum through 4.8.4 allows stored XSS in the login area. This is relevant in conjunction with CVE-2020-5842 because session cookies lack the HttpOnly flag. The impact is account takeover.

← Browse all CVEs View on cve.org ↗