Cross-Site Scripting (XSS) Vulnerability in Frog CMS 0.9.5 via admin/?/plugin/file_manager

Cross-Site Scripting (XSS) Vulnerability in Frog CMS 0.9.5 via admin/?/plugin/file_manager

CVE-2018-20778 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

admin/?/plugin/file_manager in Frog CMS 0.9.5 allows XSS by creating a new file containing a crafted attribute of an IMG element.

Learn more about our Cms Pen Testing.