CVE-2020-14294
MEDIUMSecudos Qiata FTA < 1.70.19 - Stored Cross-Site Scripting via Comment Feature
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2020-14294. PoCs published by patrickhener.
AI-analyzed exploit summary This repository contains advisory information and links related to CVE-2020-14294, a vulnerability discovered and disclosed by the author. It does not include exploit code but provides references to external advisories and writeups.
Description
An issue was discovered in Secudos Qiata FTA 1.70.19. The comment feature allows persistent XSS that is executed when reading transfer comments or the global notice board.
Exploits (1)
This repository contains advisory information and links related to CVE-2020-14294, a vulnerability discovered and disclosed by the author. It does not include exploit code but provides references to external advisories and writeups.
References (5)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N