An issue was discovered in S-CMS v1.5. There is an XSS vulnerability in search.php via the keyword parameter.
References
Link | Resource |
---|---|
https://kingflyme.blogspot.com/2018/11/the-poc-of-s-cmsxss.html | Exploit Third Party Advisory |
Configurations
Information
Published : 2018-11-09 15:29
Updated : 2018-12-11 09:59
NVD link : CVE-2018-19145
Mitre link : CVE-2018-19145
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
s-cms
- s-cms