CVE-2020-7734— Cross-site Scripting (XSS)

CVSS 8.2 · High EPSS 1.41% · P81 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-7734

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Cross-site Scripting (XSS)

Source: NVD (National Vulnerability Database)

Vulnerability Description

All versions of package cabot are vulnerable to Cross-site Scripting (XSS) via the Endpoint column.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:L

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

cabot 所有版本软件包跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

cabot是个人开发者的一个免费的，开源的，自我托管的基础设施监控平台。该平台提供web形式的监控页面，可以监控Redis、ElasticSearch cluster等服务状态，并且可以将异常信息通过邮件、SMS等方式通知开发者。 cabot 所有版本软件包存在跨站脚本漏洞，该漏洞允许攻击者通过“端点”列进行跨站点脚本（XSS）攻击。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	cabot	0 ~ unspecified	-

II. Public POCs for CVE-2020-7734

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-7734

请登录查看更多情报信息。

https://github.com/arachnys/cabot/pull/694x_refsource_MISC
https://www.exploit-db.com/exploits/48791x_refsource_MISC
https://itsmeanonartist.tech/blogs/blog2.htmlx_refsource_MISC
https://snyk.io/vuln/SNYK-PYTHON-CABOT-609862x_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2020-7734

Same Patch Batch · n/a · 2020-09-22 · 22 CVEs total

CVE-2020-14031		Ozeki NG SMS Gateway 安全漏洞
CVE-2020-24619		Shotcut 加密问题漏洞
CVE-2020-8887		Telestream Tektronix Medius 和 Sentry SQL注入漏洞
CVE-2020-23446		Verint Workforce Optimization Suite 安全漏洞
CVE-2020-3977		VMware Horizon DaaS 访问控制错误漏洞
CVE-2020-11855		Micro Focus Operation Bridge Reporter 安全漏洞
CVE-2020-11857		Micro Focus Operation Bridge Reporter 信任管理问题漏洞
CVE-2020-11856		Micro Focus Operation Bridge Reporter 安全漏洞
CVE-2020-16202		Advantech WebAccess Node 安全漏洞
CVE-2020-24333		Arista Networks CloudVision Portal 授权问题漏洞
CVE-2020-25487		PHPGURUKUL Zoo Management System SQL注入漏洞
CVE-2020-25515		Library Management System 代码问题漏洞
CVE-2020-14028		Ozeki NG SMS Gateway Autoreply 路径遍历漏洞
CVE-2020-14027		Ozeki NG SMS Gateway 参数注入漏洞
CVE-2020-15839		Liferay 代码问题漏洞
CVE-2020-14026		Ozeki NG SMS Gateway 安全漏洞
CVE-2020-14023		Ozeki NG SMS Gateway 代码问题漏洞
CVE-2020-14024		Ozeki NG SMS Gateway 跨站脚本漏洞
CVE-2020-14025		Ozeki NG SMS Gateway 跨站请求伪造漏洞
CVE-2020-14022		Ozeki NG SMS Gateway 代码问题漏洞

Showing top 20 of 22 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same vendor: n/a

V. Comments for CVE-2020-7734

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-7734— Cross-site Scripting (XSS)

I. Basic Information for CVE-2020-7734

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-7734

III. Intelligence Information for CVE-2020-7734

Same Patch Batch · n/a · 2020-09-22 · 22 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-7734

Leave a comment