Security Advisory

CVE-2021-44116

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-12-15 22:00:46
Last updated 2024-08-04 04:10:17
Assigner mitre
State PUBLISHED

Description

Cross Site Scripting (XSS) vulnerability exits in Anchor CMS <=0.12.7 in posts.php. Attackers can use the posts column to upload the title and content containing malicious code to achieve the purpose of obtaining the administrator cookie, thereby achieving other malicious operations.