Cross-site scripting (XSS) vulnerability in Website Baker CMS before 2.6.4 allows remote attackers to inject arbitrary web script or HTML via a user display name.
CPE | Name | Operator | Version |
---|---|---|---|
website_baker | eq | 2.6.1 | |
website_baker | eq | 2.5.2 | |
website_baker | eq | 2.6 |