CVE-2020-14042
- Reference to the description:
- Description:
- ** PRODUCT NOT SUPPORTED WHEN ASSIGNED ** A Cross Site Scripting (XSS) vulnerability was found in Codiad v1.7.8 and later. The vulnerability occurs because of improper sanitization of the folder's name $path variable in components/filemanager/class.filemanager.php. NOTE: the vendor states "Codiad is no longer under active maintenance by core contributors."
- Last updated date:
- 02/03/2023
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 03/30/2021
- Reference url to background
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 02/03/2023
- Reference url to background