CVE-2018-10297 · Vexday

CVE-2018-10297

EPSS 0.5%

Discuz! DiscuzX through X3.4 has stored XSS via the portal.php?mod=portalcp&ac=article URI, related to mishandling of IMG elements associated with remote images.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://laworigin.github.io/2018/04/22/Discuz-x-portal-Stored-XSS/