Back to search
CVE-2020-28927
Published: Nov 23, 2020
Modified: Aug 4, 2024
PUBLISHED
Description
There is a Stored XSS in Magicpin v2.1 in the User Registration section. Each time an admin visits the manage user section from the admin panel, the XSS triggers and the attacker can able to steal the cookie according to the crafted payload.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://magicpin.in
x_refsource_MISC
https://akshayj0111.medium.com/cve-2020-28927-6f64c25239bb
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now