CVE-2020-37236 — NewsLister contains an authenticated persistent cross-site scripting vulnerability that allows authenticated administrators to inject malicious scripts through the title parameter in the news addition — CVE Database · The Intelligence Room