5.6 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
59.5%
Cross-site scripting (XSS) vulnerability in Template CMS 2.1.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the themes_editor parameter in an add_template action to admin/index.php.
osvdb.org/85895
www.securityfocus.com/bid/55766
www.exploit-db.com/exploits/21742/
www.htbridge.com/advisory/HTB23115