CVE-2020-12718

EPSS 0.31% · P54 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-12718

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

In administration/comments.php in PHP-Fusion 9.03.50, an authenticated attacker can take advantage of a stored XSS vulnerability in the Preview Comment feature. The protection mechanism can be bypassed by using HTML event handlers such as ontoggle.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

PHP-Fusion 跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

PHP-Fusion是马来西亚PHP-Fusion公司的一套基于MySql和PHP的开源轻量级内容管理系统。该系统包含新闻、文章和论坛等模块。 PHP-Fusion 9.03.50版本中的administration/comments.php文件的Preview Comment功能存在跨站脚本漏洞。攻击者可利用该漏洞绕过保护机制。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2020-12718

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-12718

请登录查看更多情报信息。

Same Patch Batch · n/a · 2020-05-07 · 52 CVEs total

CVE-2020-8982		Citrix Systems Citrix ShareFile storage zones Controller 路径遍历漏洞
CVE-2020-12696		WordPress iframe 跨站脚本漏洞
CVE-2020-6081		3S-Smart Software Solutions CODESYS Runtime 数据伪造问题漏洞
CVE-2019-18868		Blaauw Remote Kiln Control 安全漏洞
CVE-2020-5895		F5 NGINX Controller 安全漏洞
CVE-2018-5493		ATTO Technology FibreBridge 7500N 安全漏洞
CVE-2019-18865		Blaauw Remote Kiln Control 信息泄露漏洞
CVE-2020-5894		F5 NGINX Controller 授权问题漏洞
CVE-2019-18869		Blaauw Remote Kiln Control 安全漏洞
CVE-2020-7473		Citrix Systems Citrix ShareFile storage zones Controller 路径遍历漏洞
CVE-2019-18871		Blaauw Remote Kiln Control 路径遍历漏洞
CVE-2020-8983		Citrix Systems Citrix ShareFile storage zones Controller 路径遍历漏洞
CVE-2020-12687		Serpico 安全漏洞
CVE-2020-12683		Katyshop2 跨站脚本漏洞
CVE-2020-5747		Tecnick.com TCExam 跨站脚本漏洞
CVE-2020-5744		Tecnick.com TCExam 路径遍历漏洞
CVE-2020-5743		Tecnick.com TCExam 信息泄露漏洞
CVE-2020-5746		Tecnick.com TCExam 跨站脚本漏洞
CVE-2020-11431		多款I-net software产品路径遍历漏洞
CVE-2020-5745		Tecnick.com TCExam 跨站脚本漏洞

Showing top 20 of 52 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2020-12718

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-12718

I. Basic Information for CVE-2020-12718

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-12718

III. Intelligence Information for CVE-2020-12718

Same Patch Batch · n/a · 2020-05-07 · 52 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-12718

Leave a comment