CVE-2018-11332

CVE-2018-11332

Stored cross-site scripting (XSS) vulnerability in the "Site Name" field found in the "site" tab under configurations in ClipperCMS 1.3.3 allows remote attackers to inject arbitrary web script or HTML via a crafted site name to the manager/processors/save_settings.processor.php file.

Source: CVE-2018-11332

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다