CVE-2020-29653

EPSS 0.33% · P56 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-29653

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Froxlor through 0.10.22 does not perform validation on user input passed in the customermail GET parameter. The value of this parameter is reflected in the login webpage, allowing the injection of arbitrary HTML tags.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Froxlor 跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Froxlor是Froxlor团队的一套轻量级服务器管理软件。 Froxlor 0.10.22存在安全漏洞，该漏洞源于受影响产品不对 customermail GET 参数中传递的用户输入执行验证。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2020-29653

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-29653

请登录查看更多情报信息。

https://nozero.io/en/cve-2020-29653-froxlor-html-injection-dangling-markup/x_refsource_MISC
https://github.com/Froxlor/Froxlor/security/advisoriesx_refsource_MISC
https://github.com/Froxlor/Froxlor/commits/masterx_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2020-29653

Same Patch Batch · n/a · 2022-04-13 · 26 CVEs total

CVE-2022-27256		Hubzilla 输入验证错误漏洞
CVE-2021-43154		CMS Made Simple 跨站脚本漏洞
CVE-2022-27524		Autodesk AutoCAD 缓冲区错误漏洞
CVE-2022-27523		Autodesk AutoCAD 缓冲区错误漏洞
CVE-2022-22958		多款 VMware 产品代码问题漏洞
CVE-2022-22955		多款 VMware 产品授权问题漏洞
CVE-2022-22961		多款 VMware 产品信息泄露漏洞
CVE-2022-22959		多款 VMware 产品跨站请求伪造漏洞
CVE-2022-1280		Linux kernel 资源管理错误漏洞
CVE-2021-42136		REDCap 跨站脚本漏洞
CVE-2021-46167		WIZPLAT PD065 安全漏洞
CVE-2022-28052		Roothub 路径遍历漏洞
CVE-2022-26144		MantisBT 跨站脚本漏洞
CVE-2015-20107		Python 命令注入漏洞
CVE-2022-26643		Johnson Controls EasyIO CPT Graphics 安全漏洞
CVE-2021-43741		CMSimple 路径遍历漏洞
CVE-2021-43742		CMSimple 跨站脚本漏洞
CVE-2022-24308		Automox Alive Automox Agent 安全漏洞
CVE-2022-27475		Hotel-Mgmt-System 跨站脚本漏洞
CVE-2022-29156		Linux kernel 资源管理错误漏洞

Showing top 20 of 26 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2020-29653

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-29653

I. Basic Information for CVE-2020-29653

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-29653

III. Intelligence Information for CVE-2020-29653

Same Patch Batch · n/a · 2022-04-13 · 26 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-29653

Leave a comment