CVE-2020-23234
26.07.2021, 20:15
Cross Site Scripting (XSS) vulnerabiity exists in LavaLite CMS 5.8.0 via the Menu Blocks feature, which can be bypassed by using HTML event handlers, such as "ontoggle,".
| Vendor | Product | Version |
|---|---|---|
| lavalite | lavalite | 5.8.0 |
𝑥
= Vulnerable software versions