cve/CVE-2020-14294.md at 555e9c7de4cd05afceb29c861f75c943c3c8d5d4

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-30 04:49:42 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

1.1 KiB

Raw Blame History

CVE-2020-14294

Description

An issue was discovered in Secudos Qiata FTA 1.70.19. The comment feature allows persistent XSS that is executed when reading transfer comments or the global notice board.

POC

Reference

http://seclists.org/fulldisclosure/2020/Sep/50
https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2020-024.txt
https://www.syss.de/pentest-blog/syss-2020-024-und-syss-2020-025-zwei-schwachstellen-in-file-transfer-loesung-von-qiata

Github

https://github.com/0xT11/CVE-POC
https://github.com/ARPSyndicate/cvemon
https://github.com/developer3000S/PoC-in-GitHub
https://github.com/hectorgie/PoC-in-GitHub
https://github.com/nomi-sec/PoC-in-GitHub
https://github.com/patrickhener/CVE-2020-14294
https://github.com/soosmile/POC

1.1 KiB Raw Blame History

CVE-2020-14294

Description

POC

Reference

Github

1.1 KiB

Raw Blame History