CVE-2018-10364

CVE-2018-10364

EPSS 0.8%

BigTree before 4.2.22 has XSS in the Users management page via the name or company field.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/bigtreecms/BigTree-CMS#changelog https://github.com/bigtreecms/BigTree-CMS/commit/b2eff67e45b90ca26a62e971e8f0d5d0d70f23e6 https://github.com/bigtreecms/BigTree-CMS/issues/332