2 matches found
CVE-2018-15903
The CVE-2018-15903 vulnerability affects Claromentis Discuss v1.2.1 integrated in Claromentis 8.2.2. It is a stored XSS in the Discuss module that an authenticated, low-privilege user can exploit via the discussion forum on the login landing page to steal high-privilege cookies and hijack an elev...
Claromentis Discuss 1.2.1 Cross Site Scripting
Issue: Stored Cross site Scripting XSS on Discuss Module v1.2.1 in Claromentis intranet application Reserved CVE: CVE-2018-15903 Vulnerability OverviewThe Discuss v1.2.1 module in Claromentis 8.2.2 is vulnerable to Stored Cross Site Scripting XSS. An authenticated attacker is able to place...