Lucene search

K

GoogleOSV:CVE-2018-18308

HistoryOct 16, 2018 - 10:29 p.m.

CVE-2018-18308

2018-10-1622:29:01

Google

osv.dev

4

AI Score

5.8

Confidence

High

EPSS

0.002

Percentile

57.0%

In the 4.2.23 version of BigTree, a Stored XSS vulnerability has been discovered in /admin/ajax/file-browser/upload/ (aka the image upload area).

References

packetstormsecurity.com/files/149788/BigTree-CMS-4.2.23-Cross-Site-Scripting.html

github.com/bigtreecms/BigTree-CMS/commit/ffd668a3aa7d2f540dbcdf5751f207302519df72

github.com/bigtreecms/BigTree-CMS/issues/356

www.exploit-db.com/exploits/45628/

AI Score

5.8

Confidence

High

EPSS

0.002

Percentile

57.0%

Related for OSV:CVE-2018-18308

packetstorm1 exploitdb1 cvelist1 nvd1 prion1 exploitpack1 zdt1 cve1