CVE-2020-29364

MEDIUM

NetArt News Lister 1.0.0 - Stored Cross-Site Scripting in News Headlines

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-29364. PoCs published by aslanemre.

AI-analyzed exploit summary The repository contains only a README.md file with the CVE identifier and no additional content, indicating it is a placeholder or stub with no functional exploit code or technical details.

Description

In NetArt News Lister 1.0.0, the news headlines vulnerable to stored xss attacks. Attackers can inject codes in news titles.

Exploits (1)

nomisec STUB 1 stars

by aslanemre · poc

https://github.com/aslanemre/CVE-2020-29364

View Code ZIP pw:eip

The repository contains only a README.md file with the CVE identifier and no additional content, indicating it is a placeholder or stub with no functional exploit code or technical details.

Classification

Stub 100%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: unknown

No auth needed

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (2)

Core 2

Core References

Product, Vendor Advisory x_refsource_misc

https://www.netartmedia.net/newslister

Exploit, Third Party Advisory x_refsource_misc

https://github.com/aslanemre/CVE-2020-29364/blob/main/CVE-2020-29364

View Exploit ZIP pw:eip

Scores

CVSS v3 4.8

EPSS 0.0032

EPSS Percentile 55.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

Details

CWE

CWE-79

Status published

Products (1)

netartmedia/news_lister 1.0.0

Published Nov 30, 2020

Tracked Since Feb 18, 2026