CVE-2018-10726

2018-05-04T15:29:00
ID CVE-2018-10726
Type cve
Reporter cve@mitre.org
Modified 2018-06-05T18:34:00

Description

DISPUTED A stored XSS vulnerability was found in Datenstrom Yellow 0.7.3 via an "Edit page" action. NOTE: the vendor disputes the relevance of this report because an installation accessible to untrusted users is supposed to have parserSafeMode=1 in system/config/config.ini to prevent XSS.