Unrated severityNVD Advisory· Published Dec 19, 2018· Updated Aug 5, 2024
CVE-2018-19508
CVE-2018-19508
Description
CMSimple 4.7.5 has XSS via an admin's upload of an SVG file at a ?userfiles&subdir=userfiles/images/flags/ URI.
Affected products
2Patches
Vulnerability mechanics
References
1- github.com/security-breachlock/CVE-2018-19508/blob/master/Persistent-XSS.pdfmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.