CVE-2020-15051
MEDIUMArtica Proxy < 4.30.000000 - Stored Cross-Site Scripting via Multiple Input Fields
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2020-15051. PoCs published by pratikshad19.
AI-analyzed exploit summary This repository contains a writeup describing a Stored Cross-Site Scripting (XSS) vulnerability in Artica Proxy before version 4.28.030418 Community Edition. The vulnerability allows malicious scripts to be injected into input fields such as Server Domain Name, Email Address, and Group Name, potentially leading to session cookie theft.
Description
An issue was discovered in Artica Proxy before 4.30.000000. Stored XSS exists via the Server Domain Name, Your Email Address, Group Name, MYSQL Server, Database, MYSQL Username, Group Name, and Task Description fields.
Exploits (1)
This repository contains a writeup describing a Stored Cross-Site Scripting (XSS) vulnerability in Artica Proxy before version 4.28.030418 Community Edition. The vulnerability allows malicious scripts to be injected into input fields such as Server Domain Name, Email Address, and Group Name, potentially leading to session cookie theft.
References (2)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N