CVE-2018-18260 – In the 2.4 version of Camaleon CMS, Stored XSS has been discovered. The profile image in t …

0

Vuln ID: CVE-2018-18260

Published:  2018-10-15  19:29:02Z

Description: In the 2.4 version of Camaleon CMS, Stored XSS has been discovered. The profile image in the User settings section can be run in the update / upload area via /admin/media/upload?actions=false.

Source: NVD.NIST.GOV