Moderate severityNVD Advisory· Published Oct 15, 2018· Updated Aug 5, 2024
CVE-2018-18260
CVE-2018-18260
Description
In the 2.4 version of Camaleon CMS, Stored XSS has been discovered. The profile image in the User settings section can be run in the update / upload area via /admin/media/upload?actions=false. NOTE: the vendor reports that they are "unable to reproduce the reported issue on any version."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- ghsa-coords
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.