Описание
Piranha CMS vulnerable to stored cross-site scripting (XSS)
A stored cross-site scripting (XSS) vulnerability in the /manager/pages component of Piranha CMS v12.0 allows attackers to execute arbitrary web scripts or HTML via creating a page and injecting a crafted payload into the Markdown blocks.
Пакеты
Наименование
Piranha
nuget
Затронутые версииВерсия исправления
<= 12.0.0
Отсутствует
Связанные уязвимости
CVSS3: 6.1
nvd
4 месяца назад
A stored cross-site scripting (XSS) vulnerability in the /manager/pages component of Piranha CMS v12.0 allows attackers to execute arbitrary web scripts or HTML via creating a page and injecting a crafted payload into the Markdown blocks.