CVE-2020-5810

A stored XSS vulnerability exists in Umbraco CMS <= 8.9.1 or current. An authenticated user authorized to upload media can upload a malicious .svg file which act as a stored XSS payload.
References
Link Resource
https://www.tenable.com/security/research/tra-2020-59 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:umbraco:umbraco_cms:*:*:*:*:*:*:*:*

Information

Published : 2020-12-30 04:15

Updated : 2021-01-04 07:44


NVD link : CVE-2020-5810

Mitre link : CVE-2020-5810

Products Affected
No products.
CWE