CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-16278

A cross-site scripting (XSS) vulnerability in the Permissions component in SAINT Security Suite 8.0 through 9.8.20 could allow arbitrary script to run in the context of a logged-in user when the user clicks on a specially crafted link.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.4%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://download.saintcorporation.com/products/saint_advisory15.txt
https://download.saintcorporation.com/products/saint_advisory15.txt

Products affected by CVE-2020-16278

Carson-Saint » Saint Security Suite » Version: 8.0

cpe:2.3:a:carson-saint:saint_security_suite:8.0
Carson-Saint » Saint Security Suite » Version: 9.8.20

cpe:2.3:a:carson-saint:saint_security_suite:9.8.20

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-16278

Products

Pricing

Contact Us