Cross site scripting

2018-07-3114:29:00

PRIOn knowledge base

www.prio-n.com

0.001 Low

EPSS

Percentile

39.7%

JSON

Persistent Cross-Site Scripting (XSS) vulnerability in the “Categories” feature in SeedDMS (formerly LetoDMS and MyDMS) before 5.1.8 allows remote attackers to inject arbitrary web script or HTML via the name field.

CPENameOperatorVersion
seeddmslt5.1.8

CPE	Name	Operator	Version
	seeddms	lt	5.1.8

References

sourceforge.net/p/seeddms/code/ci/seeddms-5.1.x/tree/CHANGELOG

www.contextis.com/resources/advisories/cve-2018-12944

0.001 Low

EPSS

Percentile

39.7%

JSON

Related for PRION:CVE-2018-12944