CVE-2019-6243

CVE-2019-6243

EPSS 0.7%

Frog CMS 0.9.5 allows XSS via the forgot password page (aka the /admin/?/login/forgot URI).

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://somerandomshitwbu.blogspot.com/2019/01/another-xss-on-frog-cms-open-source.html