CVE-2018-13998
ClipperCMS 1.3.3 contains a stored XSS flaw in the Full Name field leveraged from the Security → Manager Users or Security → Web Users interfaces. The root cause is unvalidated/sanitized input stored and later rendered in a context where scripts execute. Impact is user-protection risk through scr...