Persistent Cross-site scripting vulnerability on Fork CMS version 5.8.2 allows remote attackers to inject arbitrary Javascript code via the “navigation_title” parameter and the “title” parameter in /private/en/pages/add.
CPE | Name | Operator | Version |
---|---|---|---|
forkcms/forkcms | lt | 5.8.3 |