CVE List

CVE-2020-5810

Moderate 5.4

A stored XSS vulnerability exists in Umbraco CMS <= 8.9.1 or current. An authenticated user authorized to upload media can upload a malicious .svg file which act as a stored XSS payload.

Published December 30, 2020.

Affected software

Get alerts for Umbraco Umbraco CMS

Reference links