First published: Tue Jun 20 2023(Updated: )
Cross Site Scripting vulnerability in taogogo taoCMS v.2.5 beta5.1 allows remote attacker to execute arbitrary code via the name field in admin.php.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
taogogo taoCMS | =2.5-beta1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-20725 is a Cross Site Scripting (XSS) vulnerability in taogogo taoCMS v.2.5 beta5.1.
The vulnerability allows a remote attacker to execute arbitrary code by exploiting the name field in admin.php.
CVE-2020-20725 has a severity level of medium with a CVSS score of 6.1.
To fix the vulnerability, update to a version of taogogo taoCMS that is not affected by the Cross Site Scripting vulnerability.
Yes, you can find more information about CVE-2020-20725 on the official GitHub repository of taogogo taoCMS.