DMIND

A stored cross-site scripting (XSS) vulnerability exists in FUEL-CMS-1.5.1 that allows an authenticated user authorized to upload a malicious .svg file which acts as a stored XSS payload. If this...

Stored Cross-Site Scripting Vulnerability in Latest Release 3.3.16

3

Impact version:3.3.16 Stored Cross-Site Scripting vulnerability in GetSimpleCMS v.3.3.16 allows a remote attacker to execute arbitrary code via the a crafted payload to the components.php function. 1. Access the Edit...