SHIRAGI is a CMS used to easily create websites. v1.0.0 to v1.14.2 of SHIRAGI, v1.15.0, contains a cross-site scripting vulnerability that stems from inadequate cleaning of user-supplied data, which could be exploited by remote attackers to trick victims into following specially crafted links and executing arbitrary HTML and scripting code in the context of the vulnerable website in the user’s browser.
CPE | Name | Operator | Version |
---|---|---|---|
SHIRAGI SHIRAGI v | eq | 1.15.0 | |
SHIRAGI SHIRAGI >=v1.0.0,<v | eq | 1.14.2 |