CVE-2018-10364

CVE-2018-10364

EPSS 0.8%

BigTree before 4.2.22 has XSS in the Users management page via the name or company field.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/bigtreecms/BigTree-CMS#changelog https://github.com/bigtreecms/BigTree-CMS/commit/b2eff67e45b90ca26a62e971e8f0d5d0d70f23e6 https://github.com/bigtreecms/BigTree-CMS/issues/332