2 matches found
CVE-2022-36573
A cross-site scripting XSS vulnerability in Pagekit CMS v1.0.18 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Markdown text box under /blog/post/edit...
CVE-2022-36573
This CVE affects Pagekit CMS v1.0.18, where a cross-site scripting (XSS) vulnerability exists in the Markdown text box used when editing a blog post at /blog/post/edit. The issue is exposed by injecting a crafted payload that leads to arbitrary web scripts/HTML execution. The PT-2022-23480 adviso...