CVE-2020-15028

Publication date

2020-07-07 15:37:21

Family

mitre

State

PUBLISHED

Description

NeDi 1.9C is vulnerable to a cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Topology-Map.php xo parameter.