RSS   Vulnerabilities for 'Evolution cms'   RSS

2019-08-15
 
CVE-2019-14518

CWE-79
 

 
** DISPUTED ** Evolution CMS 2.0.x allows XSS via a description and new category location in a template. NOTE: the vendor states that the behavior is consistent with the "access policy in the administration panel."

 

 >>> Vendor: MODX 4 Products
Revolution
Modx revolution
FRED
Evolution cms


Copyright 2024, cxsecurity.com

 

Back to Top