A stored cross-site scripting (XSS) vulnerability exists in BigTree CMS 4.4.10 and previous versions which allows an authenticated malicious user to execute arbitrary web scripts or HTML via the page content to site/index.php/admin/pages/update.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bigtreecms bigtree cms |