Unrated severityOSV Advisory· Published Dec 15, 2025· Updated Apr 7, 2026
Blackcat CMS 1.4 Stored Cross-Site Scripting via Page Modification
CVE-2023-53891
Description
Blackcat CMS 1.4 contains a stored cross-site scripting vulnerability that allows authenticated users to inject malicious scripts into page content. Attackers can insert JavaScript payloads in the page modification interface that execute when other users view the compromised page.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 1.0, 1.0.3, 1.1, …
Patches
Vulnerability mechanics
References
3- www.exploit-db.com/exploits/51604mitreexploit
- www.vulncheck.com/advisories/blackcat-cms-stored-cross-site-scripting-via-page-modificationmitrethird-party-advisory
- blackcat-cms.orgmitreproduct
News mentions
0No linked articles in our index yet.