cve/2020/CVE-2020-8776.md

CVE-2020-8776

Description

Alfresco Enterprise before 5.2.7 and Alfresco Community before 6.2.0 (rb65251d6-b368) has XSS via the URL property of a file.

POC

Reference

• http://packetstormsecurity.com/files/156599/Alfresco-5.2.4-Cross-Site-Scripting.html
• http://packetstormsecurity.com/files/156599/Alfresco-5.2.4-Cross-Site-Scripting.html

Github

• https://github.com/ARPSyndicate/cvemon
• https://github.com/Orange-Cyberdefense/CVE-repository
• https://github.com/Transmetal/CVE-repository-master