CVE-2020-36653

Name of the Vulnerable Software and Affected Versions GENI Portal (affected versions not specified)

Description A problematic issue was found in GENI Portal, affecting some unknown functionality of the file portal/www/portal/error-text.php. The manipulation of the error argument leads to cross-site scripting. The attack may be launched remotely.

Recommendations To fix this issue, it is recommended to apply a patch, specifically the one identified as c2356cc41260551073bfaa3a94d1ab074f554938. As a temporary workaround, consider restricting access to the vulnerable file portal/www/portal/error-text.php until a patch is applied. Additionally, avoid manipulating the error argument in the affected functionality to minimize the risk of exploitation.