CVE-2022-27063
AeroCMS v0.0.1 contains a stored XSS vulnerability in view_all_comments.php. The issue arises from unsanitized input in the Comments text field, allowing attackers to inject arbitrary web scripts/HTML. Impact per sources includes arbitrary script execution and potential cookie access when admins ...