4 matches found
CVE-2017-16514
Multiple persistent stored Cross-Site-Scripting XSS vulnerabilities in the files /wb/admin/admintools/tool.php Droplet Description and /install/index.php Site Title in WebsiteBaker 2.10.0 allow attackers to insert persistent JavaScript code that gets reflected back to users in multiple areas in t...
Cross site scripting
Multiple persistent stored Cross-Site-Scripting XSS vulnerabilities in the files /wb/admin/admintools/tool.php Droplet Description and /install/index.php Site Title in WebsiteBaker 2.10.0 allow attackers to insert persistent JavaScript code that gets reflected back to users in multiple areas in t...
CVE-2017-16514
Multiple persistent stored Cross-Site-Scripting XSS vulnerabilities in the files /wb/admin/admintools/tool.php Droplet Description and /install/index.php Site Title in WebsiteBaker 2.10.0 allow attackers to insert persistent JavaScript code that gets reflected back to users in multiple areas in t...
CVE-2017-16514
CVE-2017-16514 affects WebsiteBaker 2.10.0, with multiple persistent stored XSS vulnerabilities in the files /wb/admin/admintools/tool.php and /install/index.php. The root cause is persistent JavaScript code being stored and reflected back to users in various areas of the application. Exploitatio...