2 matches found
CVE-2019-18219
Sitemagic CMS 4.4.1 is affected by a Cross-Site-Scripting XSS vulnerability, as it fails to validate user input. The affected components index.php, upgrade.php allow for JavaScript injection within both GET or POST requests, via a crafted URL or via the UpgradeMode POST parameter...
CVE-2019-18219
CVE-2019-18219 affects Sitemagic CMS 4.4.1. The vulnerability is a Cross-Site Scripting (XSS) flaw arising from inadequate input validation in the affected components, specifically index.php and upgrade.php. An attacker could inject JavaScript via crafted URLs (GET) or through the UpgradeMode POS...