Medium severity5.4OSV Advisory· Published Apr 30, 2018· Updated Jun 17, 2026
CVE-2018-10364
CVE-2018-10364
Description
BigTree before 4.2.22 has XSS in the Users management page via the name or company field.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
24.0beta2, 4.2, 4.2.10, …+ 1 more
- (no CPE)range: 4.0beta2, 4.2, 4.2.10, …
- (no CPE)range: <4.2.22
Patches
Vulnerability mechanics
References
2- github.com/bigtreecms/BigTree-CMS/commit/b2eff67e45b90ca26a62e971e8f0d5d0d70f23e6nvdPatch
- github.com/bigtreecms/BigTree-CMS/issues/332nvdIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.