Lucene search
MitreCVELIST:CVE-2018-18260HistoryOct 15, 2018 - 12:00 a.m.
CVE-2018-18260
2018-10-1500:00:00
mitre
www.cve.org
3
EPSS
0.001
Percentile
26.5%
In the 2.4 version of Camaleon CMS, Stored XSS has been discovered. The profile image in the User settings section can be run in the update / upload area via /admin/media/upload?actions=false. NOTE: the vendor reports that they are “unable to reproduce the reported issue on any version.”
Related
prion
prion
Cross site scripting
2018-10-15 19:29:00
rubygems
rubygems
Camaleon CMS vulnerable to Stored Cross-site Scripting
2022-05-12 21:00:00
github
github
Camaleon CMS vulnerable to Stored Cross-site Scripting
2022-05-13 01:05:37
nvd
nvd
CVE-2018-18260
2018-10-15 19:29:02
zdt
zdt
CAMALEON CMS 2.4 Cross Site Scripting Vulnerability
2018-10-12 00:00:00
veracode
veracode
Cross-Site Scripting (XSS)
2018-10-15 05:38:12
osv
osv
Camaleon CMS vulnerable to Stored Cross-site Scripting
2022-05-13 01:05:37
packetstorm
packetstorm
CAMALEON CMS 2.4 Cross Site Scripting
2018-10-12 00:00:00
cve
cve
CVE-2018-18260
2018-10-15 19:29:02