Multiple Cross-Site Scripting (XSS) Vulnerabilities in Citadel WebCit through 926

Multiple Cross-Site Scripting (XSS) Vulnerabilities in Citadel WebCit through 926

CVE-2020-27741 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Multiple cross-site scripting (XSS) vulnerabilities in Citadel WebCit through 926 allow remote attackers to inject arbitrary web script or HTML via multiple pages and parameters. NOTE: this was reported to the vendor in a publicly archived "Multiple Security Vulnerabilities in WebCit 926" thread.

Learn more about our Web App Pen Testing.