Security Advisory

CVE-2018-20464

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-12-25 23:00:00

Last updated 2024-08-05 12:05:16

Assigner mitre

State PUBLISHED

Description

There is a reflected XSS vulnerability in the CMS Made Simple 2.2.8 admin/myaccount.php. This vulnerability is triggered upon an attempt to modify a users mailbox with the wrong format. The response contains the users previously entered email address.

← Browse all CVEs View on cve.org ↗