Textpattern is a free open-source content management system based on PHP and MySQL. version 4.8.1 of Textpattern contains a cross-site scripting vulnerability. An attacker can use this vulnerability to conduct cross-site scripting attacks via the “Custom” field in the “Menu Preferences” feature.
CPE | Name | Operator | Version |
---|---|---|---|
textpattern textpattern | eq | 4.8.1 |