CVE-2020-25343 – Cross-site scripting (XSS) vulnerabilities in Symphony CMS 3.0.0 allow re

4 years ago

Cross-site scripting (XSS) vulnerabilities in Symphony CMS 3.0.0 allow remote attackers to inject arbitrary web script or HTML to fields[‘body’] param via eventsevent.publish_article.php

Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25343

Reference (s):

https://www.exploit-db.com/exploits/48773