In GeniXCMS 1.1.4, /inc/lib/backend/menus.control.php has XSS via the id parameter.
References
Link | Resource |
---|---|
http://ph0rse.me/2017/09/21/GeniXCMS-1-1-4%E6%9C%80%E6%96%B0%E7%89%88%E6%9C%AC-getshell/ | Exploit Third Party Advisory |
Configurations
History
No history.
Information
Published : 2017-09-27 08:29
Updated : 2024-02-04 19:29
NVD link : CVE-2017-14761
Mitre link : CVE-2017-14761
CVE.ORG link : CVE-2017-14761
JSON object : View
Products Affected
genixcms
- genixcms
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')