CVE-2020-23761: Cross-site Scripting

April 9, 2021 (updated April 13, 2021)

Cross Site Scripting (XSS) vulnerability in subrion CMS allows remote attackers to execute arbitrary web script via the “payment gateway” column on transactions tab.

References

nvd.nist.gov/vuln/detail/CVE-2020-23761

Code Behaviors & Features

Detect and mitigate CVE-2020-23761 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →