CVE-2020-37014

MEDIUM SEVERITY

CVSS Score & Metrics

Base Score

6.4 / 10

Vector String

                                        CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N                                    

Vulnerability Description

Tryton 5.4 contains a persistent cross-site scripting vulnerability in the user profile name input that allows remote attackers to inject malicious scripts. Attackers can exploit the vulnerability by inserting script payloads in the name field, which execute in the frontend and backend user interfaces.

Vulnerability Details

Published Date

January 30, 2026

Last Modified

February 04, 2026

CWE ID

CWE-79

Source

NVD

Vendor

Tryton

Product

Tryton

External References

https://www.exploit-db.com/exploits/48466
https://www.tryton.org/
https://www.tryton.org/download
https://www.vulncheck.com/advisories/tryton-persistent-cross-site-scripting
https://www.vulnerability-lab.com/get_content.php?id=2233

CVE-2020-37014

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment