Cross site scripting

2018-04-2617:29:00

PRIOn knowledge base

www.prio-n.com

4.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.8%

JSON

An issue was discovered in DiliCMS (aka DiligentCMS) 2.4.0. There is a Stored XSS Vulnerability in the fourth textbox of “System setting->site setting” of admin/index.php.

CPENameOperatorVersion
dilicmseq2.4.0

CPE	Name	Operator	Version
	dilicms	eq	2.4.0

References

github.com/chekun/DiliCMS/issues/57