CVE-2020-25470
Published
CVSS v3
6.1
MEDIUM
CVSS v2
4.3
MEDIUM
Affected
1
PROJECT
Description
AntSword 2.1.8.1 contains a cross-site scripting (XSS) vulnerability in the View Site funtion. When viewing an added site, an XSS payload can be injected in cookies view which can lead to remote code execution.
中国蚁剑是一款跨平台的开源网站管理工具。AntSword is a cross-platform website management toolkit.
GitHub