CVE-2020-21052 Information

Description

Cross Site Scripting vulnerability in zrlog zrlog v.2.1.3 allows a remote attacker to execute arbitrary code via the nickame parameter of the /post/addComment function.

Reference

https://github.com/94fzb/zrlog/issues/56