2 matches found
CVE-2018-19844
FROG CMS 0.9.5 has XSS via the admin/?/snippet/add name parameter, which is mishandled during an edit action, a related issue to CVE-2018-10319...
CVE-2018-19844
Affected software: Frog CMS 0.9.5. Vulnerability: Cross-Site Scripting (XSS) via the admin/?/snippet/edit or admin/?/snippet/add name parameter, due to mishandling during snippet edit/add actions. Impact: XSS could allow arbitrary script injection. Root cause / details: The XSS is described acros...