0.001 Low
EPSS
Percentile
31.8%
October CMS build 412 is vulnerable to stored XSS in brand logo image name resulting in JavaScript code execution in the victim’s browser.
github.com/octobercms/october
github.com/octobercms/october/compare/v1.0.412...v1.0.413#diff-66d6dfe5e11488e1afefcb69b8bdaabfR31
nvd.nist.gov/vuln/detail/CVE-2017-1000193