CVE-2020-25877
CVE-2020-25877 , in BlackCat CMS 1.3.6, is a stored XSS in the Add Page feature. An authenticated attacker can inject arbitrary web scripts or HTML via the Title parameter. The vulnerability allows script execution in the context of users who view the affected page. No remediation details are pro...