CVE-2020-35305

EPSS 0.31% · P54 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-35305

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Cross site scripting (XSS) in gollum 5.0 to 5.1.2 via the filename parameter to the 'New Page' dialog.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Gollum 跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Gollum是Gollum公司的一个建立在 Git 之上的简单 wiki 系统。具有良好的 API 和本地前端。 Gollum 5.0版本至5.1.2版本存在安全漏洞，该漏洞源于gollum中的跨站脚本 (XSS) 通过文件名参数到 New Page 对话框。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2020-35305

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-35305

请登录查看更多情报信息。

http://gollum.comx_refsource_MISC
https://github.com/Szarny/x_refsource_MISC
https://github.com/gollum/gollum/releases/tag/v5.1.2x_refsource_MISC
https://github.com/gollum/x_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2020-35305

Same Patch Batch · n/a · 2022-07-15 · 28 CVEs total

CVE-2022-25891	7.5 HIGH	Denial of Service (DoS)
CVE-2022-25858	5.3 MEDIUM	Regular Expression Denial of Service (ReDoS)
CVE-2022-25869	4.2 MEDIUM	Angular 跨站脚本漏洞
CVE-2022-35905	3.3 LOW	Bentley Systems MicroStation和Bentley View 缓冲区错误漏洞
CVE-2022-35906	3.3 LOW	Bentley Systems MicroStation和Bentley View 缓冲区错误漏洞
CVE-2022-35900	3.3 LOW	Bentley Systems MicroStation和Bentley View 缓冲区错误漏洞
CVE-2022-35901	3.3 LOW	Bentley Systems MicroStation和Bentley View 缓冲区错误漏洞
CVE-2022-35902	3.3 LOW	Bentley Systems MicroStation和Bentley View 缓冲区错误漏洞
CVE-2022-35903	3.3 LOW	Bentley Systems MicroStation和Bentley View 缓冲区错误漏洞
CVE-2022-35904	3.3 LOW	Bentley Systems MicroStation和Bentley View 缓冲区错误漏洞
CVE-2022-32119		AROX School-ERP Pro 代码问题漏洞
CVE-2022-35409		Mbed TLS 缓冲区错误漏洞
CVE-2022-32118		AROX School-ERP Pro 跨站脚本漏洞
CVE-2020-36553		SourceCodester Multi Restaurant Table Reservation System 跨站脚本漏洞
CVE-2020-36552		SourceCodester Multi Restaurant Table Reservation System 跨站脚本漏洞
CVE-2020-36551		SourceCodester Multi Restaurant Table Reservation System 跨站脚本漏洞
CVE-2020-36550		SourceCodester Multi Restaurant Table Reservation System 跨站脚本漏洞
CVE-2020-35261		SourceCodester Multi Restaurant Table Reservation System 跨站脚本漏洞
CVE-2022-34826		Couchbase Server 日志信息泄露漏洞
CVE-2021-36461		Microweber 代码问题漏洞

Showing top 20 of 28 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2020-35305

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-35305

I. Basic Information for CVE-2020-35305

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-35305

III. Intelligence Information for CVE-2020-35305

Same Patch Batch · n/a · 2022-07-15 · 28 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-35305

Leave a comment