CVE-2020-15053

MEDIUM

Artica Proxy CE <4.28.030.418 - XSS

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-15053. PoCs published by pratikshad19.

AI-analyzed exploit summary This repository contains a writeup describing CVE-2020-15053, a reflected XSS vulnerability in Artica Proxy before version 4.28.030418. The vulnerability allows execution of malicious scripts via input fields such as search, real-time requests, and system events.

Description

An issue was discovered in Artica Proxy CE before 4.28.030.418. Reflected XSS exists via these search fields: real time request, System Events, Proxy Events, Proxy Objects, and Firewall objects.

Exploits (1)

nomisec WRITEUP
by pratikshad19 · poc
https://github.com/pratikshad19/CVE-2020-15053

This repository contains a writeup describing CVE-2020-15053, a reflected XSS vulnerability in Artica Proxy before version 4.28.030418. The vulnerability allows execution of malicious scripts via input fields such as search, real-time requests, and system events.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Artica Proxy Community Edition before v4.28.030418
No auth needed
Prerequisites: Access to vulnerable Artica Proxy instance · Victim interaction to trigger payload
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://github.com/pratikshad19/CVE-2020-15053

Scores

CVSS v3 6.1
EPSS 0.0183
EPSS Percentile 76.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-79
Status published
Products (1)
articatech/artica_proxy < 4.28.030.418
Published Jul 20, 2020
Tracked Since Feb 18, 2026