Security Advisory

CVE-2021-25969

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-10-20 11:55:14

Last updated 2025-04-30 15:57:20

Assigner Mend

State PUBLISHED

Description

In Camaleon CMS application, versions 0.0.1 to 2.6.0 are vulnerable to stored XSS, that allows an unauthenticated attacker to store malicious scripts in the comments section of the post. These scripts are executed in a victim’s browser when they open the page containing the malicious comment.

← Browse all CVEs View on cve.org ↗