CVE-2022-37721

Posted on 2022년 11월 26일2022년 11월 26일 by admin

CVE-2022-37721

PyroCMS 3.9 is vulnerable to a stored Cross Site Scripting (XSS_ when a low privileged user such as an author, injects a crafted html and javascript payload in a blog post, leading to full admin account takeover or privilege escalation.

Source: CVE-2022-37721

답글 남기기 응답 취소