cve/2020/CVE-2020-28146.md

CVE-2020-28146

Description

Cross Site Scripting (XSS) vulnerability exists in Eyoucms v1.4.7 and earlier via the addonfieldext parameter.

POC

Reference

• https://github.com/eyoucms/eyoucms/issues/12
• https://www.exploit-db.com/exploits/48530

Github

No PoCs found on GitHub currently.