WOlfCMS WolfCMS version version 0.8.3.1 contains a Stored Cross-Site Scripting vulnerability in Layout Name (from Layout tab) that can result in low privilege user can steal the cookie of admin user and compromise the admin account. This attack appear to be exploitable via Need to enter the Javascript code into Layout Name .
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2018-03-13T15:00:00

Updated: 2024-08-05T12:33:49.219Z

Reserved: 2018-02-21T00:00:00

Link: CVE-2018-1000084

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-03-13T15:29:01.067

Modified: 2024-11-21T03:39:36.393

Link: CVE-2018-1000084

cve-icon Redhat

No data.