cve/CVE-2018-20418.md at 18943f3353ca1cc3fd2595afa412856465e29c78 - cve - 临风笛

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-30 04:49:42 +00:00

0xMarcio 6100550298 Update CVE sources 2024-06-22 09:37

2024-06-22 09:37:59 +00:00

689 B

Raw Blame History

CVE-2018-20418

Description

index.php?p=admin/actions/entries/save-entry in Craft CMS 3.0.25 allows XSS by saving a new title from the console tab.

POC

Reference

Github

https://github.com/rdincel1/Craft-CMS-3.0.25---Cross-Site-Scripting