Cross Site Scripting (XSS) in Wuzhi CMS v4.1.0 allows remote attackers to execute arbitrary code via the "Title" parameter in the component "/coreframe/app/guestbook/myissue.php".
References
Link | Resource |
---|---|
https://github.com/wuzhicms/wuzhicms/issues/174 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-06-22T15:08:35
Updated: 2021-06-22T15:08:35
Reserved: 2020-08-13T00:00:00
Link: CVE-2020-18654
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-06-22T16:15:07.747
Modified: 2021-06-24T13:19:17.137
Link: CVE-2020-18654
JSON object: View
Redhat Information
No data.
CWE