VYPR
Unrated severityOSV Advisory· Published Oct 16, 2018· Updated Aug 5, 2024

CVE-2018-18308

CVE-2018-18308

Description

In the 4.2.23 version of BigTree, a Stored XSS vulnerability has been discovered in /admin/ajax/file-browser/upload/ (aka the image upload area).

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Bigtreecms/Bigtree CMSOSV2 versions
    4.0beta2, 4.2, 4.2.10, …+ 1 more
    • (no CPE)range: 4.0beta2, 4.2, 4.2.10, …
    • (no CPE)range: = 4.2.23

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.