Security Advisory

CVE-2018-11332

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-05-24 16:00:00

Last updated 2024-08-05 08:01:52

Assigner mitre

State PUBLISHED

Description

Stored cross-site scripting (XSS) vulnerability in the "Site Name" field found in the "site" tab under configurations in ClipperCMS 1.3.3 allows remote attackers to inject arbitrary web script or HTML via a crafted site name to the manager/processors/save_settings.processor.php file.

← Browse all CVEs View on cve.org ↗