mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-07 11:06:19 +00:00
947 B
947 B
CVE-2020-13564
&color=brighgreen)
Description
A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to arbitrary JavaScript execution. An attacker can provide a crafted URL to trigger this vulnerability in the phpGACL template acl_id parameter.
POC
Reference
- https://talosintelligence.com/vulnerability_reports/TALOS-2020-1177
- https://talosintelligence.com/vulnerability_reports/TALOS-2020-1177
Github
No PoCs found on GitHub currently.