Vulnerability CVE-2023-44954


Published: 2023-11-01   Modified: 2023-11-02

Description:
Cross Site Scripting vulnerability in BigTree CMS v.4.5.7 allows a remote attacker to execute arbitrary code via the ID parameter in the Developer Settings functions.

 References:
https://www.bigtreecms.org/download/core/
https://github.com/Ciber-Mike/BigTree_CMS-Stored_XSS-Developer_Settings/blob/main/README.md

Copyright 2026, cxsecurity.com

 

Back to Top