CVE-2020-18280

Cross Site Scripting vulnerability found in Phodal CMD v.1.0 allows a local attacker to execute arbitrary code via the EMBED SRC function. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt