CNNVD-202601-5064 Information

CNNVD ID

CNNVD-202601-5064

Related CVE

CVE-2020-37014

• CNNVD Published: 2026-01-30

Description (Chinese)

Tryton是Tryton开源的一套内容管理系统。 Tryton 5.4版本存在跨站脚本漏洞，该漏洞源于用户配置文件名称输入清理不当，可能导致存储型跨站脚本攻击。

Description (English)

Tryton is an open-source content management system for Tryton. There is a cross-site script loophole in version 5.4, which stems from the improper clean-up of user profile names, which may result in a storage-type cross-site script attack.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

tryton

Published

2026-01-30

Last Modified

2026-02-24

References

https://www.exploit-db.com/exploits/48466 https://www.tryton.org/ https://www.tryton.org/download https://www.vulncheck.com/advisories/tryton-persistent-cross-site-scripting https://www.vulnerability-lab.com/get_content.php?id=2233

Patch

https://www.tryton.org/download