4 matches found
CVE-2018-10125
Contao before 4.5.7 has XSS in the system log...
CVE-2018-10125
Contao before 4.5.7 has XSS in the system log...
CVE-2018-10125
Contao before 4.5.7 has XSS in the system log...
CVE-2018-10125
The CVE-2018-10125 entry describes a Cross-site Scripting (XSS) vulnerability in Contao before version 4.5.7, specifically in the system log. The root cause appears to be insufficient validation of client-side data in the web application, enabling an attacker to inject malicious scripts that may ...