2 matches found
CVE-2018-12043
content/content.blueprintspages.php in Symphony 2.7.6 has XSS via the pages content page...
CVE-2018-12043
Symphony CMS 2.7.6 is affected by a cross-site scripting (XSS) vulnerability in content/content.blueprintspages.php, via the pages content page. The root cause is lack of sanitization of the page parameter, enabling insertion of arbitrary web script/HTML. The CVE descriptions consistently identif...