Evolution CMS 1.4.x allows XSS via the page weblink title parameter to the manager/ URI.
5.4CVSS
5.2AI Score
0.001EPSS
5.4CVSS
5.2AI Score
0.001EPSS
Evolution CMS 2.0.x allows XSS via a description and new category location in a template. NOTE: the vendor states that the behavior is consistent with the "access policy in the administration panel.
5.4CVSS
5.2AI Score
0.001EPSS