Stored Cross-Site Scripting Vulnerability in Backdrop CMS Published Article Pages
Backdrop CMS is a foreign open source, free CMS system for small and medium-sized businesses and non-profit organizations. A stored cross-site scripting vulnerability exists in the Backdrop CMS publish article page. An attacker can insert malicious js code into the page to obtain user cookies and...