Cross-Site Scripting in Textpattern 4.8.4 by Textpattern
CVE-2020-35854
4.8MEDIUM
What is CVE-2020-35854?
The Textpattern version 4.8.4 is susceptible to a Cross-Site Scripting (XSS) vulnerability in the Body parameter. This flaw could allow attackers to inject malicious scripts, compromising user data and session integrity. It's crucial for users and administrators to implement security measures to mitigate potential exploitation of this vulnerability.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
References
CVSS V3.1
Score:
4.8
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
Required
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved