CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-5842

Codoforum 4.8.3 allows XSS in the user registration page: via the username field to the index.php?u=/user/register URI. The payload is, for example, executed on the admin/index.php?page=users/manage page.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.018

EPSS Ranking 82.1%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://medium.com/%40prasanthc41m/cve-2020-5842-stored-xss-vulnerability-in-codoforum-4-8-3-b2e1133c6a91
https://www.exploit-db.com/exploits/47876
https://medium.com/%40prasanthc41m/cve-2020-5842-stored-xss-vulnerability-in-codoforum-4-8-3-b2e1133c6a91
https://www.exploit-db.com/exploits/47876

Products affected by CVE-2020-5842

Codologic » Codoforum » Version: 4.8.3

cpe:2.3:a:codologic:codoforum:4.8.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-5842

Products

Pricing

Contact Us