Stored XSS Vulnerability in October CMS build 412 via Brand Logo Image Name

Stored XSS Vulnerability in October CMS build 412 via Brand Logo Image Name

CVE-2017-1000193 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

October CMS build 412 is vulnerable to stored WCI (a.k.a XSS) in brand logo image name resulting in JavaScript code execution in the victim's browser.

Learn more about our Cms Pen Testing.