2024-05-30 11:10:37
INCIBE
PUBLISHED
Two Cross-Site Scripting vulnerabilities have been discovered in Alkacons OpenCMS affecting version 16, which could allow a user with sufficient privileges to create and modify web pages through the admin panel, can execute malicious JavaScript code, after inserting code in the “title” field.