Vulnerability Details CVE-2020-23518
Cross Site Scripting (XSS) vulnerability in UltimateKode Neo Billing - Accounting, Invoicing And CRM Software up to version 3.5 which allows remote attackers to inject arbitrary web script or HTML.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 39.2%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 3.5
Products affected by CVE-2020-23518
-
cpe:2.3:a:ultimatekode:neo_billing:3.3
-
cpe:2.3:a:ultimatekode:neo_billing:3.4
-
cpe:2.3:a:ultimatekode:neo_billing:3.5