XSS Vulnerability in DouCo DouPHP 1.5 20181221 via nav_name Parameter

XSS Vulnerability in DouCo DouPHP 1.5 20181221 via nav_name Parameter

CVE-2018-20565 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

An issue was discovered in DouCo DouPHP 1.5 20181221. admin/nav.php?rec=update has XSS via the nav_name parameter.

Learn more about our Web Application Penetration Testing UK.