3 matches found
CVE-2021-42970
Cross Site Scripting XSS vulnerability exists in cxuucms v3 via the imgurl of /feedback/post/ content parameter...
CVE-2021-42970
Cross Site Scripting XSS vulnerability exists in cxuucms v3 via the imgurl of /feedback/post/ content parameter...
CVE-2021-42970
CXUUCMS v3 is affected by a Cross Site Scripting (XSS) vulnerability via the imgurl field in the /feedback/post/ content parameter. The root cause is unsafely handled user input in the imgurl parameter, enabling script injection visible to other users. According to the cited references, this is a...