An issue exists in CmsEasy 6.1_20180508. There is a CSRF vulnerability in the rich text editor that can add an IFRAME element. This might be used in a DoS attack if a referenced remote URL is refreshed at a rapid rate.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cmseasy cmseasy 6.0 |