Skip to main content
CVE-2020-9339 MEDIUM POC This Month

SOPlanning 1.45 allows XSS via the Name or Comment to status.php. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Soplanning
NVD GitHub
CVSS 3.1
5.4
EPSS
0.6%
CVE-2020-9338 MEDIUM POC This Month

SOPlanning 1.45 allows XSS via the "Your SoPlanning url" field. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Soplanning
NVD GitHub
CVSS 3.1
5.4
EPSS
0.5%
CVE-2020-9336 MEDIUM POC This Month

fauzantrif eLection 2.0 has XSS via the Admin Dashboard -> Settings -> Election -> "message if election is closed" field. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Fauzantrif Election
NVD GitHub
CVSS 3.1
5.4
EPSS
0.5%
CVE-2020-9342 MEDIUM This Month

The F-Secure AV parsing engine before 2020-02-05 allows virus-detection bypass via crafted Compression Method data in a GZIP archive. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Cloud Protection For Salesforce Email And Server Security Internet Gatekeeper
NVD
CVSS 3.1
5.5
EPSS
1.6%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy