Contao 4.8.4 and 4.8.5 has Improper Encoding or Escaping of Output. It is possible to inject insert tags into the login module which will be replaced when the page is rendered.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
contao contao 4.8.4 |
||
contao contao 4.8.5 |