CVE-2017-9546

admin.php in BigTree through 4.2.18 allows remote authenticated users to cause a denial of service (inability to save revisions) via XSS sequences in a revision name.

Date published : 2017-06-12

https://github.com/bigtreecms/BigTree-CMS/issues/298