LiveActive security incident?Get immediate response
CVE archive

2020 CVE Archive

Browse CVE records published in 2020 CVE Archive, with severity, affected products, CWE, KEV, and source-backed vulnerability context.

Showing 50 of 19384 matching CVEs · Page 2 of 388.

Unknown · CVSS Not scored

CVE-2020-24815: A Server-Side Request Forgery (SSRF) affecting the PDF generation in MicroStrategy 10.4, 2019 before Update...

A Server-Side Request Forgery (SSRF) affecting the PDF generation in MicroStrategy 10.4, 2019 before Update 6, and 2020 before Update 2 allows authenticated users to access the content of internal network resources or leak files from the local system via HTML containers embedded in a dossier/dashboard document. NOTE: 10.4., no fix will be released as version will reach end-of-life on 31/12/2020.

Published Nov 24, 2020 · Updated Jul 9, 2026

Unknown · CVSS Not scored

CVE-2020-23450: Spiceworks Version <= 7.5.00107 is affected by XSS.

Spiceworks Version <= 7.5.00107 is affected by XSS. Any name typed on Custom Groups function is vulnerable to stored XSS as they displayed on http://127.0.0.1/inventory/groups/ without output sanitization.

Published Sep 1, 2020 · Updated Jul 9, 2026