Medium severity4.8OSV Advisory· Published Jun 14, 2018· Updated Jun 17, 2026
CVE-2018-10821
CVE-2018-10821
Description
Cross-site scripting (XSS) vulnerability in backend/pages/modify.php in BlackCatCMS 1.3 allows remote authenticated users with the Admin role to inject arbitrary web script or HTML via the search panel.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
21.0, 1.0.3, 1.1, …+ 1 more
- (no CPE)range: 1.0, 1.0.3, 1.1, …
- (no CPE)range: =1.3
Patches
Vulnerability mechanics
References
2- github.com/BlackCatDevelopment/BlackCatCMS/commit/a817755828cd0bfd4b87b0eb5cec59ffe57d3c3envdPatchThird Party Advisory
- github.com/BlackCatDevelopment/BlackCatCMS/issues/384nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.