Vulnerabilities

CVE-2017-11180

by Fred · 11/07/2017

FineCMS through 2017-07-11 has stored XSS in the logging functionality, as demonstrated by an XSS payload in (1) the User-Agent header of an HTTP request or (2) the username entered on the login screen.

Date published : 2017-07-11

http://www.yuesec.com/img/cccccve/finecms_storedxss/finecms_storedxss26543.html

Similar

Tags: Cybersecurity Alert