CVE-2017-11180
CVE-2017-11180
FineCMS through 2017-07-11 has stored XSS in the logging functionality, as demonstrated by an XSS payload in (1) the User-Agent header of an HTTP request or (2) the username entered on the login screen.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →