← back
CVE-2019-9553

CVE-2019-9553

EPSS 1.8%
Bolt 3.6.4 has XSS via the slug, teaser, or title parameter to editcontent/pages, a related issue to CVE-2017-11128 and CVE-2018-19933.
Affected products
n/a · n/a
public PoCs found2
cve_referencepacketstormsecurity.com/files/151943/Bold-CMS-3.6.4-Cross-Site-Scripting.htmlunverifiedcve_referencewww.exploit-db.com/exploits/46495unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://packetstormsecurity.com/files/151943/Bold-CMS-3.6.4-Cross-Site-Scripting.htmlhttps://www.exploit-db.com/exploits/46495