CVE-2020-15016

Publication date

2020-06-26 13:09:28

Family

mitre

State

PUBLISHED

Description

NeDi 1.9C is vulnerable to reflected cross-site scripting. The Other-Converter.php file improperly validates user input. An attacker can exploit this vulnerability by crafting arbitrary JavaScript in the txt GET parameter.