← volver
CVE-2019-15228

CVE-2019-15228

EPSS 0.7%
FUEL CMS 1.4.4 has XSS in the Create Blocks section of the Admin console. This could lead to cookie stealing and other malicious actions. This vulnerability can be exploited with an authenticated account but can also impact unauthenticated visitors.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/daylightstudio/FUEL-CMS/issues/536https://www.sevenlayers.com/index.php/237-fuelcms-1-4-4-xss