2026-01-15 23:25:51
VulnCheck
PUBLISHED
Cotonti Siena 0.9.19 contains a stored cross-site scripting vulnerability in the admin configuration panels site title parameter. Attackers can inject malicious JavaScript code through the maintitle parameter to execute scripts when administrators view the page.