CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-15016

NeDi 1.9C is vulnerable to reflected cross-site scripting. The Other-Converter.php file improperly validates user input. An attacker can exploit this vulnerability by crafting arbitrary JavaScript in the txt GET parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.2%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://gist.github.com/PreethamBomma/9c3eb4a6f5188a67c94306dd9c9f23ca
https://gist.github.com/PreethamBomma/9c3eb4a6f5188a67c94306dd9c9f23ca

Products affected by CVE-2020-15016

Nedi » Nedi » Version: 1.9c

cpe:2.3:a:nedi:nedi:1.9c

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-15016

Products

Pricing

Contact Us