CVE-2018-10806
CVE-2018-10806 (Frog CMS 0.9.5) : A reflected Cross-Site Scripting vulnerability exists in Frog CMS via the file[current_name] parameter to the admin/?/plugin/file_manager/rename URI. The issue can be exploited in conjunction with CSRF. Affected product: Frog CMS 0.9.5. Vulnerable component: the ...