CVE-2020-23048
22.10.2021, 20:15
SeedDMS Content Management System v6.0.7 contains a persistent cross-site scripting (XSS) vulnerability in the component AddEvent.php via the name and comment parameters.
| Vendor | Product | Version |
|---|---|---|
| seeddms | seeddms | 4.3.37 |
| seeddms | seeddms | 5.0.13 |
| seeddms | seeddms | 5.1.14 |
| seeddms | seeddms | 5.1.16 |
| seeddms | seeddms | 5.1.18 |
| seeddms | seeddms | 6.0.7 |
𝑥
= Vulnerable software versions