PT-2023-25798 · Eyoucms · Eyoucms
Shfen9
·
Published
2023-07-06
·
Updated
2023-07-11
·
CVE-2023-37136
CVSS v3.1
5.4
Medium
| Vector | AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
eyoucms version 1.6.3
Description
A stored cross-site scripting issue in the Basic Website Information module allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
Recommendations
For eyoucms version 1.6.3, update to a version that includes a fix for this issue, as no specific workaround is provided for this version.
Exploit
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Eyoucms