CVE-2017-14765

CVE-2017-14765

EPSS 0.7%

In GeniXCMS 1.1.4, gxadmin/index.php has XSS via the Menu ID field in a page=menus request.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://ph0rse.me/2017/09/21/GeniXCMS-1-1-4%E6%9C%80%E6%96%B0%E7%89%88%E6%9C%AC-getshell/