Gleezcms Gleez Cms version 1.3.0 contains a Cross Site Scripting (XSS) vulnerability in Profile page that can result in Inject arbitrary web script or HTML via the profile page editor. This attack appear to be exploitable via The victim must navigate to the attacker's profile page.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/gleez/cms/issues/797 |
![]() ![]() |
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2018-07-23T15:00:00Z
Updated: 2024-09-16T22:21:15.258Z
Reserved: 2018-07-23T00:00:00Z
Link: CVE-2018-1999021

No data.

Status : Modified
Published: 2018-07-23T15:29:00.800
Modified: 2024-11-21T03:57:04.253
Link: CVE-2018-1999021

No data.