Catfish CMS V4.7.21 allows XSS via the pinglun parameter to cat/index/index/pinglun (aka an authenticated comment).
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/xwlrbh/Catfish/issues/1 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-04-11T17:00:00Z
Updated: 2024-09-17T03:28:32.602Z
Reserved: 2018-04-11T00:00:00Z
Link: CVE-2018-10023
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-04-11T17:29:00.363
Modified: 2024-11-21T03:40:41.640
Link: CVE-2018-10023
Redhat
No data.