Saturday, December 26, 2020
CVE-2020-35346
nist.gov
In: nist.gov
CXUUCMS V3 3.1 is affected by a reflected XSS vulnerability that allows remote attackers to inject arbitrary web script or HTML via the imgurl parameter of admin.php?c=content&a=add. CVE-2020-35346