A stored cross-site scripting (XSS) vulnerability in the upload function of totaljs CMS 3.4.5 allows malicious users to execute arbitrary web scripts via a JavaScript embedded PDF file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
totaljs total.js 3.4.5 |