ALSong 3.46 and earlier version contain a Document Object Model (DOM) based cross-site scripting vulnerability caused by improper validation of user input. A remote attacker could exploit this vulnerability by tricking the victim to open ALSong Album(sab) file.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: krcert
Published: 2020-05-15T14:44:03
Updated: 2024-08-04T09:41:01.930Z
Reserved: 2020-01-22T00:00:00
Link: CVE-2020-7809
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-05-15T15:15:10.747
Modified: 2020-05-19T16:34:45.247
Link: CVE-2020-7809
Redhat
No data.