RSS   Vulnerabilities for 'Krpano'   RSS

2021-01-07
 
CVE-2020-24901

CWE-79
 

 
The default installation of Krpano Panorama Viewer version <=1.20.8 is vulnerable to Reflected XSS due to insecure remote js load in file viewer/krpano.html, parameter plugin[test].url.

 
 
CVE-2020-24900

CWE-79
 

 
The default installation of Krpano Panorama Viewer version <=1.20.8 is prone to Reflected XSS due to insecure XML load in file /viewer/krpano.html, parameter xml.

 


Copyright 2024, cxsecurity.com

 

Back to Top