CVE-2018-20601
UCMS 1.4.7 has XSS via the description parameter in an index.php list_editpost action.
Don't forget to share
- Next story Twitter’s Mobile Phone Integration Is Insecure
- Previous story EU to fund bug bounty programs for 14 open source projects starting January 2019
Tags
Android
app
Apple
apps
attack
Attacks
breach
Bug
Chinese
Chrome
Cloud
Code
Critical
Cyber
Cybersecurity
Data
Devices
Facebook
Firm
flaw
Flaws
Google
government
Group
hack
Hacked
Hacker
hackers
hacking
Malware
Microsoft
Million
News
Online
Patches
Phishing
Privacy
Ransomware
Russian
Security
Software
Users
Vulnerabilities
vulnerability
Windows