A cross site scripting (XSS) vulnerability in menuedit.php of Mara CMS 7.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25422
Reference (s):
- https://github.com/r0ck3t1973/xss_payload/issues/2