CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-14210

Reflected Cross-Site Scripting (XSS) vulnerability in MONITORAPP WAF in which script can be executed when responding to Request URL information. It provides a function to response to Request URL information when blocking.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 45.8%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://github.com/kbgsft/vuln-AIWAF/wiki/Cross-site-scripting%28XSS%29-vulnerability-in-AIWAF-in-MONITORAPP-by-xcuter
https://github.com/monitorapp-aicc/report/wiki/CVE-2020-14210
https://github.com/kbgsft/vuln-AIWAF/wiki/Cross-site-scripting%28XSS%29-vulnerability-in-AIWAF-in-MONITORAPP-by-xcuter
https://github.com/monitorapp-aicc/report/wiki/CVE-2020-14210

Products affected by CVE-2020-14210

Monitorapp » Application Insight Web Application » Version: 2020-06-16

cpe:2.3:a:monitorapp:application_insight_web_application:2020-06-16
Monitorapp » Web Application Firewall » Version: 2020-06-16

cpe:2.3:a:monitorapp:web_application_firewall:2020-06-16

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-14210

Products

Pricing

Contact Us