QuickApps CMS version 2.0.0 is vulnerable to Stored Cross-site Scripting in the user’s real name field resulting in denial of service and performing unauthorised actions with an administrator user’s account
CPE | Name | Operator | Version |
---|---|---|---|
quickapps/cms | eq | 2.0.0-beta1 | |
quickapps/cms | eq | 2.0.0-beta2 |