mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
864 B
864 B
CVE-2019-14518
Description
** DISPUTED ** Evolution CMS 2.0.x allows XSS via a description and new category location in a template. NOTE: the vendor states that the behavior is consistent with the "access policy in the administration panel."
POC
Reference
- https://github.com/evolution-cms/evolution/issues/1041
- https://github.com/evolution-cms/evolution/issues/1041
- https://github.com/evolution-cms/evolution/issues/1042
- https://github.com/evolution-cms/evolution/issues/1042
Github
No PoCs found on GitHub currently.