CVE-2020-5810

Publication date

2020-12-30 15:18:02

Family

tenable

State

PUBLISHED

Description

A stored XSS vulnerability exists in Umbraco CMS <= 8.9.1 or current. An authenticated user authorized to upload media can upload a malicious .svg file which act as a stored XSS payload.