Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.4
CVSSv3

CVE-2020-10128

Published: 05/09/2023 Updated: 07/11/2023
CVSS v3 Base Score: 5.4 | Impact Score: 2.7 | Exploitability Score: 2.3
VMScore: 0
Subscribe to Searchblox

Vulnerability Summary

SearchBlox product with version prior to 9.2.1 is vulnerable to stored cross-site scripting at multiple user input parameters. In SearchBlox products multiple parameters are not sanitized/validate properly which allows an malicious user to inject malicious JavaScript.

Vulnerable Product Search on Vulmon Subscribe to Product

searchblox searchblox

Github Repositories

https://github.com/InfoSec4Fun/CVE-2020-10128

CVE-2020-10128 - SearchBlox product before V-9.2.1 is vulnerable to Stored-Cross Site Scripting

CVE-2020-10128 - SearchBlox product before V-921 is vulnerable to Stored-Cross Site Scripting Product Description: SearchBlox simplifies enterprise search for complex organizations SearchBlox intuitive and intelligent tools offer out-of-the-box setup, secure encryption, and low total cost of ownership AI-powered solutions optimize each step of the search journey to dramatic

References

CWE-79https://developer.searchblox.com/v9.2/changelog/version-921https://nvd.nist.govhttps://github.com/InfoSec4Fun/CVE-2020-10128
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionSSRFbuffer overflowCVE-2023-28952CVE-2023-41822CVE-2024-27956CVE-2023-7028CVE-2024-34447CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook