| शीर्षक | WityCMS 0.6.1 "Website's name" field Stored Cross Site Scripting |
|---|
| विवरण | Stored cross-site scripting (XSS) vulnerability in the "Website's name" field found in the "Settings" page under the "General" menu in WityCMS 0.6.1 allows remote attackers to inject arbitrary web script or HTML via a crafted website name by doing an authenticated POST HTTP request to WityCMS/admin/settings/general. |
|---|
| स्रोत | ⚠️ https://github.com/Creatiwity/wityCMS/issues/150 |
|---|
| उपयोगकर्ता | nathunandwani (UID 862) |
|---|
| सबमिशन | 28/05/2018 02:58 PM (8 साल पहले) |
|---|
| संयम | 28/05/2018 05:52 PM (3 hours later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 118269 [CreatiWity wityCMS 0.6.1 Website Name क्रॉस साइट स्क्रिप्टिंग] |
|---|
| अंक | 18 |
|---|