CVE-2020-12707 | LeptonCMS 4.5.0 Event modules/wysiwyg/save.php cross site scripting (EDB-48250)
A vulnerability was found in LeptonCMS 4.5.0. It has been classified as problematic. Affected is an unknown function of the file modules/wysiwyg/save.php of the component Event Handler. The manipulation leads to cross site scripting.
This vulnerability is traded as CVE-2020-12707. It is possible to launch the attack remotely. Furthermore, there is an exploit available.