Cross-site scripting (XSS) vulnerability in Ektron Content Management System (CMS) prior to 9.1.0.184 SP3 (9.1.0.184.3.127) allows remote malicious users to inject arbitrary web script or HTML via the ContType parameter in a ViewContentByCategory action to WorkArea/content.aspx.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ektron ektron content management system |