CVE-2020-9461

Octech Oempro 4.7 through 4.11 allow stored XSS by an authenticated user. The FolderName parameter of the Media.CreateFolder command is vulnerable.
References
Link Resource
https://www.octeth.com/ Product
https://guilhermerubert.com/blog/cve-2020-9460/ Exploit Third Party Advisory
https://github.com/Guilherme-Rubert/CVE-2020-9461 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:octech:oempro:*:*:*:*:*:*:*:*

Information

Published : 2020-04-14 03:15

Updated : 2020-04-14 05:05


NVD link : CVE-2020-9461

Mitre link : CVE-2020-9461

Products Affected
No products.
CWE