2 matches found
Blackcat CMS Cross-Site Scripting Vulnerability (CNVD-2017-24891)
BlackCat CMS is a content management system CMS based on PHP5 and HTML5 developed by Black Cat team. A cross-site scripting vulnerability exists in Blackcat CMS version 1.2. A remote attacker can inject arbitrary web script or HTML by sending the 'maplanguage' parameter to the file...
CVE-2017-9609
Cross-site scripting XSS vulnerability in Blackcat CMS 1.2 allows remote authenticated users to inject arbitrary web script or HTML via the maplanguage parameter to backend/pages/langsettings.php...