Security Advisory

CVE-2019-15228

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-08-19 23:28:53

Last updated 2024-08-05 00:42:02

Assigner mitre

State PUBLISHED

Description

FUEL CMS 1.4.4 has XSS in the Create Blocks section of the Admin console. This could lead to cookie stealing and other malicious actions. This vulnerability can be exploited with an authenticated account but can also impact unauthenticated visitors.

← Browse all CVEs View on cve.org ↗