CVE-2018-16637

CVE-2018-16637

EPSS 0.6%

Evolution CMS 1.4.x allows XSS via the page weblink title parameter to the manager/ URI.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/security-breachlock/CVE-2018-16637/blob/master/evolution_xss_stored.pdf