2024-05-25 21:48:12 +02:00
### [CVE-2020-25915](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25915)
### Description
Cross Site Scripting (XSS) vulnerability in UserController.php in ThinkCMF version 5.1.5, allows attackers to execute arbitrary code via crafted user_login.
### POC
#### Reference
- https://github.com/thinkcmf/thinkcmf/issues/675
2024-06-09 00:33:16 +00:00
- https://github.com/thinkcmf/thinkcmf/issues/675
2024-05-25 21:48:12 +02:00
#### Github
No PoCs found on GitHub currently.
