CVE-2020-26799 | THREATINT

Description

A reflected cross-site scripting (XSS) vulnerability was discovered in index.php on Luxcal 4.5.2 which allows an unauthenticated attacker to steal other users' data.

PUBLISHED Reserved 2020-10-07 | Published 2025-07-21 | Updated 2025-07-21 | Assigner mitre

References

www.luxsoft.eu/index.php?pge=dload

youtu.be/npw9jcQ1h1U

suryadina.com/luxcal-reflected-xss-cve-2020-26799/

cve.org (CVE-2020-26799)

nvd.nist.gov (CVE-2020-26799)

Download JSON