CVE-2018-9173

2018-04-02T03:29:00
ID CVE-2018-9173
Type cve
Reporter cve@mitre.org
Modified 2018-05-02T14:59:00

Description

Cross-site scripting (XSS) vulnerability in admin/template/js/uploadify/uploadify.swf in GetSimple CMS 3.3.13 allows remote attackers to inject arbitrary web script or HTML, as demonstrated by the movieName parameter.