Vulnerabilities

CVE-2017-15881

by Fred · 24/10/2017

Cross-Site Scripting vulnerability in KeystoneJS before 4.0.0-beta.7 allows remote authenticated administrators to inject arbitrary web script or HTML via the "content brief" or "content extended" field, a different vulnerability than CVE-2017-15878.

Date published : 2017-10-24

http://www.securityfocus.com/bid/101541

KeystoneJS Open Source Penetration Testing Report – Gratis 2017

Similar

Tags: Cybersecurity Alert