Cross-site scripting (XSS) vulnerability in static/admin/js/kindeditor/plugins/multiimage/images/swfupload.swf in noneCms v1.3.0 allows remote malicious users to inject arbitrary web script or HTML via the movieName parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
5none nonecms 1.3.0 |