WBCE CMS is an open source content management system (CMS) based on PHP and MySQL.A cross-site scripting vulnerability exists in WBCE CMS 1.5.4 and prior versions, which stems from the lack of effective filtering and escaping of user-supplied data in the Post Loop field of the Overview Page Settings module, which can be exploited to launch cross-site scripting attacks.
CPE | Name | Operator | Version |
---|---|---|---|
wbce wbce cms | le | 1.5.4 |