Prasanth C

1 exploit Active since Jan 2020
CVE-2020-5842 NOMISEC MEDIUM WRITEUP
Codoforum 4.8.3 - Stored Cross-Site Scripting via User Registration Username Field
Codoforum 4.8.3 allows XSS in the user registration page: via the username field to the index.php?u=/user/register URI. The payload is, for example, executed on the admin/index.php?page=users/manage page.
1 stars
CVSS 6.1