An issue was discovered in baserCMS before 4.1.4. In the Register New Category feature of the Upload menu, the category name can be used for XSS via the data[UploaderCategory][name] parameter to an admin/uploader/uploader_categories/edit URI.
Paid content will be excluded from the download. |
Filter |
|
Matches : 246942 | Download | Alert* |
© SecPod Technologies