Morphykutay

**Name of the Vulnerable Software and Affected Versions** FlatCore-CMS version 2.0.9 **Description** The issue is related to a cross-site scripting (XSS) vulnerability in the pages.edit.php component of FlatCore-CMS. This vulnerability can be exploited through meta tags and content sections, potentially allowing a remote attacker to perform cross-site scripting attacks. The vulnerability is associated with a lack of protection for the web page structure. **Recommendations** For FlatCore-CMS version 2.0.9, consider disabling the pages.edit.php component until a patch is available to prevent exploitation of the XSS vulnerability. Restrict access to meta tags and content sections in the pages.edit.php component to minimize the risk of cross-site scripting attacks.