CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-23974

Create-Project Manager 1.07 has Multi Persistent Cross-site Scripting and HTML injection in via Online chat, Social feed,Message(title-tag), Add new client (all-tags).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.2%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

https://cxsecurity.com/issue/WLB-2020050071
https://packetstormsecurity.com/files/157599/Create-Project-Manager-1.07-Cross-Site-Scripting-HTML-Injection.html
https://cxsecurity.com/issue/WLB-2020050071
https://packetstormsecurity.com/files/157599/Create-Project-Manager-1.07-Cross-Site-Scripting-HTML-Injection.html

Products affected by CVE-2020-23974

Create-Project Manager Project » Create-Project Manager » Version: 1.07

cpe:2.3:a:create-project_manager_project:create-project_manager:1.07

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-23974

Products

Pricing

Contact Us