Cuppa CMS v1.0 exists to contain a cross-site scripting vulnerability at /table_manager/view/cu_user_groups. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field under the Add New Group function.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cuppacms cuppacms 1.0 |