Cross-Site Scripting in Textpattern 4.8.4 by Textpattern
CVE-2020-35854

4.8MEDIUM

Key Information:

Vendor: Textpattern
Status: Textpattern
Vendor: CVE Published:; 26 January 2021

🔔 Create Textpattern Vulnerability Alert

What is CVE-2020-35854?

The Textpattern version 4.8.4 is susceptible to a Cross-Site Scripting (XSS) vulnerability in the Body parameter. This flaw could allow attackers to inject malicious scripts, compromising user data and session integrity. It's crucial for users and administrators to implement security measures to mitigate potential exploitation of this vulnerability.