CVE-2020-22765

Description

Cross Site Scripting (XSS) vulnerability in NukeViet cms 4.4.0 via the editor in the News module.

Affected packages (1)

• Packagist/nukeviet/nukeviet>= 4.4.0, < 4.4.01

CVSS scores

References (3)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2020-22765
• PATCHhttps://github.com/nukeviet/nukeviet
• WEBhttps://nukeviet.vn/vi/news/Tin-tuc/nukeviet-cam-on-le-thanh-trung-da-phat-hien-loi-an-ninh-nukeviet-631.html