admin.php in BigTree through 4.2.18 allows remote authenticated users to cause a denial of service (inability to save revisions) via XSS sequences in a revision name.
CPE | Name | Operator | Version |
---|---|---|---|
bigtree-cms | eq | 4.0beta6 | |
bigtree-cms | eq | 4.2.12 | |
bigtree-cms | eq | 4.2 | |
bigtree-cms | eq | 4.0beta2 | |
bigtree-cms | eq | 4.2.7 | |
bigtree-cms | eq | 4.1.6 | |
bigtree-cms | eq | 4.2.3 | |
bigtree-cms | eq | 4.2.14 | |
bigtree-cms | eq | 4.2.9 | |
bigtree-cms | eq | 4.0.1 |