Multiple cross-site scripting (XSS) vulnerabilities in Pulse Pro CMS 1.7.2 allow remote malicious users to inject arbitrary web script or HTML via the (1) d parameter in a blocks action and (2) post_id parameter in an edit-post action to index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pulsecms pulse cms 1.7.2 |