First published: Wed Dec 22 2021(Updated: )
MetInfo 7.0 beta contains a stored cross-site scripting (XSS) vulnerability in the $name parameter of admin/?n=column&c=index&a=doAddColumn.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Metinfo Metinfo | =7.0.0-beta |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this vulnerability is CVE-2020-20600.
The severity of CVE-2020-20600 is medium with a CVSS score of 5.4.
The affected software is MetInfo 7.0 beta.
CVE-2020-20600 is a stored cross-site scripting (XSS) vulnerability in the $name parameter of admin/?n=column&c=index&a=doAddColumn.
To fix CVE-2020-20600, upgrade to a version of MetInfo that is not affected by this vulnerability.