Lucene search
GoogleOSV:GHSA-7F84-9CQF-G4J9HistoryMay 13, 2022 - 1:05 a.m.
Camaleon CMS vulnerable to Stored Cross-site Scripting
2022-05-1301:05:37
Google
osv.dev
28
camaleon cms
stored cross-site scripting
2.4 version
user settings
profile image
upload area
/admin/media/upload
EPSS
0.001
Percentile
26.5%
In the 2.4 version of Camaleon CMS, Stored XSS has been discovered. The profile image in the User settings section can be run in the update / upload area via /admin/media/upload?actions=false.
Related
prion
prion
Cross site scripting
2018-10-15 19:29:00
github
github
Camaleon CMS vulnerable to Stored Cross-site Scripting
2022-05-13 01:05:37
rubygems
rubygems
Camaleon CMS vulnerable to Stored Cross-site Scripting
2022-05-12 21:00:00
cvelist
cvelist
CVE-2018-18260
2018-10-15 00:00:00
nvd
nvd
CVE-2018-18260
2018-10-15 19:29:02
zdt
zdt
CAMALEON CMS 2.4 Cross Site Scripting Vulnerability
2018-10-12 00:00:00
veracode
veracode
Cross-Site Scripting (XSS)
2018-10-15 05:38:12
packetstorm
packetstorm
CAMALEON CMS 2.4 Cross Site Scripting
2018-10-12 00:00:00
cve
cve
CVE-2018-18260
2018-10-15 19:29:02