CVE-2020-21316

Publication date

2021-06-15 17:15:24

Family

mitre

State

PUBLISHED

Description

A Cross-site scripting (XSS) vulnerability exists in the comment section in ZrLog 2.1.3, which allows remote attackers to inject arbitrary web script and stolen administrator cookies via the nickname parameter and gain access to the admin panel.