Cross site scripting

2019-03-0723:29:00

PRIOn knowledge base

www.prio-n.com

5.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.8%

JSON

An issue was discovered in DiliCMS 2.4.0. There is a Stored XSS Vulnerability in the second textbox of “System setting->site setting” of admin/index.php, aka site_domain.

CPENameOperatorVersion
dilicmseq2.4.0

CPE	Name	Operator	Version
	dilicms	eq	2.4.0

References

github.com/chekun/DiliCMS/issues/62