CVE-2020-23014 – APfell 1.4 is vulnerable to authenticated reflected cross-site scripting (XSS) in /apiui/c …

26 January 2021

Vuln ID: CVE-2020-23014

Published: 2021-01-26 18:15:42Z

Description: APfell 1.4 is vulnerable to authenticated reflected cross-site scripting (XSS) in /apiui/command_ through the payloadtypes_callback function, which allows an attacker to steal remote admin/user session and/or adding new users to the administration panel.

Source: NVD.NIST.GOV

Date:

26 January 2021

Categorie(s):

NVD

Tag(s):

NVD

Rewards Up to $10 Million for Information on Iranian Hackers24 April 2024
‘Absolute joke’: customers’ personal data exposed amid Pandemonium Rocks festival refund stoush24 April 2024
CoralRaider Malware Campaign Exploits CDN Cache to Spread Info-Stealers24 April 2024
GenAI can enhance security awareness training24 April 2024
AI set to play key role in future phishing attacks24 April 2024