Cross-Site Scripting Vulnerability in KonaWiki by Kujirahand
CVE-2020-5612

6.1MEDIUM

Key Information:

Vendor: Kujirahand
Status: Konawiki
Vendor: CVE Published:; 29 July 2020

What is CVE-2020-5612?

KonaWiki versions 2.2.0 and earlier are vulnerable to a cross-site scripting (XSS) flaw that enables remote attackers to execute arbitrary scripts. This vulnerability arises when a user interacts with a specially crafted URL, potentially leading to unauthorized actions within the user's session. The exploitation of this vulnerability can pose significant security risks, including data theft and unauthorized access.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

KonaWiki 2.2.0 and earlier

References

https://kujirahand.com/konawiki/

x_refsource_MISC

https://jvn.jp/en/jp/JVN48194211/index.html

x_refsource_MISC

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Jul 29, 2020
Vulnerability Reserved
Jan 6, 2020

JSON

Kujirahand