CVE-2017-6511 in FineCMSinfo

Summary

andrzuk/FineCMS before 2017-03-06 is vulnerable to a reflected XSS in index.php because of missing validation of the action parameter in application/classes/application.php.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

03/07/2017

Disclosure

03/07/2017

Moderation

VulDB entry created

Entries

VDB-97623 (1)

CPE

ready

CWE

CWE-79 (Confirmed)

CVSS

5.2

EPSS

0.00240

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-6511
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-6511
CVE Details	https://www.cvedetails.com/cve/CVE-2017-6511/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!