CVE-2018-19600

CVE-2018-19600

EPSS 0.7%

Rhymix CMS 1.9.8.1 allows XSS via an index.php?module=admin&act=dispModuleAdminFileBox SVG upload.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/rhymix/rhymix/issues/1088 https://github.com/security-breachlock/CVE-2018-19600/blob/master/XSS.pdf