VYPR
Medium severity4.8NVD Advisory· Published Jun 27, 2022· Updated Jun 17, 2026

CVE-2022-33009

CVE-2022-33009

Description

A stored cross-site scripting (XSS) vulnerability in LightCMS v1.3.11 allows attackers to execute arbitrary web scripts or HTML via uploading a crafted PDF file.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.