CVE-2020-24924
N/A
N/A
Summary
A Persistent Cross-site Scripting vulnerability is found in ElkarBackup v1.3.3, where an attacker can steal the user session cookie using this vulnerability present on Policies >> action >> Name Parameter
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://www.elkarbackup.org/
- https://vyshnavvizz.blogspot.com/2020/09/stored-cross-site-scripting-in.html
- https://github.com/sooraj24/new/blob/master/XSS%20in%20ElkarBackup
References
- https://www.elkarbackup.org/
- https://vyshnavvizz.blogspot.com/2020/09/stored-cross-site-scripting-in.html
- https://github.com/sooraj24/new/blob/master/XSS%20in%20ElkarBackup
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.