Identifier

CVE-2020-14146

Package Slug

packagist/kumbiaphp/kumbiapp

Vulnerability

Cross-site Scripting

Description

KumbiaPHP in Development mode, allows XSS via the public/pages/kumbia PATH_INFO.

Affected Versions

All versions up to 1.1.1

Solution

Unfortunately, there is no solution available yet.

Last Modified

2020-06-18

source