5.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
26.1%
Cross Site Scripting vulnerability in BigTree CMS v.4.5.7 allows a remote attacker to execute arbitrary code via the ID parameter in the Developer Settings functions.
github.com/Ciber-Mike/BigTree_CMS-Stored_XSS-Developer_Settings/blob/main/README.md
www.bigtreecms.org/download/core/