CyberSec.Space Logo
CVEブラウザに戻る

CVE-2020-37014

MEDIUM
6.4
CVSS Severity Score
EPSS Score0.0540%
EPSS Percentile24.22th
Published2026年1月30日
Last Modified2026年4月15日

Vulnerability Description

Tryton 5.4 contains a persistent cross-site scripting vulnerability in the user profile name input that allows remote attackers to inject malicious scripts. Attackers can exploit the vulnerability by inserting script payloads in the name field, which execute in the frontend and backend user interfaces.

Affected Platforms (CPE)

No CPE configurations currently published for this record.

References & Advisories

🔗 https://www.exploit-db.com/exploits/48466
🔗 https://www.tryton.org/
🔗 https://www.tryton.org/download
🔗 https://www.vulncheck.com/advisories/tryton-persistent-cross-site-scripting
🔗 https://www.vulnerability-lab.com/get_content.php?id=2233

関連する脆弱性情報

CVE-2020-696210.0

In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Ve...

CVE-2020-696610.0

In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Ver...

CVE-2020-696110.0

In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Ve...

CVE-2020-696310.0

In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Ver...