Vulnerabilities > Thinkcmf > Thinkcmf > 5.1.5

DATE CVE VULNERABILITY TITLE RISK
2023-08-11 CVE-2020-25915 Cross-site Scripting vulnerability in Thinkcmf 5.1.5
Cross Site Scripting (XSS) vulnerability in UserController.php in ThinkCMF version 5.1.5, allows attackers to execute arbitrary code via crafted user_login.
network
low complexity
thinkcmf CWE-79
5.4
5.4