CVE-2024-22569

Stored Cross-Site Scripting XSS vulnerability in POSCMS v4.6.2, allows attackers to execute arbitrary code via a crafted payload to /index.php?c=install&m=index&step=2&isinstalldb=0...

PT-2024-19489 · Poscms · Poscms

Name of the Vulnerable Software and Affected Versions: POSCMS version 4.6.2 Description: A Stored Cross-Site Scripting XSS issue allows attackers to execute arbitrary code via a crafted payload to "/index.php?c=install&m=index&step=2&is install db=0". This enables attackers to inject malicious...