A reflected cross-site scripting (XSS) vulnerability in /install/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website title parameter.
CPE | Name | Operator | Version |
---|---|---|---|
blackcatcms | eq | 1.0.1 | |
blackcatcms | eq | 1.0.2a | |
blackcatcms | eq | 1.2.1 | |
blackcatcms | eq | 1.3.6 | |
blackcatcms | eq | 1.4Beta | |
blackcatcms | eq | 1.3.2 | |
blackcatcms | eq | 1.4.1Beta | |
blackcatcms | eq | 1.3.4 | |
blackcatcms | eq | 1.2 | |
blackcatcms | eq | 1.2.1RC1 |