CVE-2019-1010061

CVE-2019-1010061

BigTree-CMS commit b2eff67e45b90ca26a62e971e8f0d5d0d70f23e6 and earlier is affected by: Improper Neutralization of Script-Related HTML Tags in a Web Page. The impact is: Any Javascript code can be executed. The component is: users management page. The attack vector is: Insert payload into users’ profile and wait for administrators to visit the users management page. The fixed version is: after commit b2eff67e45b90ca26a62e971e8f0d5d0d70f23e6.

Source: CVE-2019-1010061

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다