3 matches found
Craft CMS 3.0.25 - Cross-Site Scripting
Exploit Title: Craft CMS 3.0.25 - Cross-Site Scripting Google Dork: N/A Date: 2018-12-20 Exploit Author: Raif Berkay Dincel Contact: www.raifberkaydincel.com More Details 1 : https://www.raifberkaydincel.com/craft-cms-3-0-25-cross-site-scripting-vulnerability.html More Details 2 :...
Craft CMS 3.0.25 Cross Site Scripting
Exploit Title: Craft CMS 3.0.25 - Cross-Site Scripting Google Dork: N/A Date: 2018-12-20 Exploit Author: Raif Berkay Dincel Contact: www.raifberkaydincel.com More Details 1 : https://www.raifberkaydincel.com/craft-cms-3-0-25-cross-site-scripting-vulnerability.html More Details 2 :...
CVE-2018-20418
CVE-2018-20418 affects Craft CMS, version 3.0.25. The vulnerability is a cross-site scripting (XSS) flaw in the handling of the title during saving through the admin action endpoint: http://…/admin/actions/entries/save-entry. Saving a new title from the console tab is reported to enable XSS. The ...