umbraco cms is vulnerable to cross-site scripting. A remotely authenticated attacker is able to inject arbitrary Javascript into a victim’s browser via the Header Name
when updating or removing public access of content.
CPE | Name | Operator | Version |
---|---|---|---|
umbracocms | le | 8.17.0 | |
umbracocms | le | 8.17.0 |