Vulnerability Details CVE-2020-13248
BooleBox Secure File Sharing Utility before 4.2.3.0 allows stored XSS via a crafted avatar field within My Account JSON data to Account.aspx.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 56.2%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 3.5
References
- https://app.boolebox.com/release/vulnerabilities/CVE-2020-13247-13248.html
- https://members.backbox.org/boolebox-secure-sharing-multiple-vulnerabilities/
- https://app.boolebox.com/release/vulnerabilities/CVE-2020-13247-13248.html
- https://members.backbox.org/boolebox-secure-sharing-multiple-vulnerabilities/