2 matches found
CVE-2019-17522
A stored XSS vulnerability was discovered in Hotaru CMS v1.7.2 via the adminindex.php?page=settings SITE NAME field aka SITENAME, a related issue to CVE-2011-4709.1...
CVE-2019-17522
CVE-2019-17522 is a stored XSS vulnerability in Hotaru CMS v1.7.2. The issue is exploitable via the admin_index.php?page=settings SITE NAME field (SITE_NAME), allowing a malicious input to be stored and later reflected to an administrator, with the potential to execute client-side scripts. The re...