Stored Cross-site Scripting Vulnerability in QuickApps CMS 2.0.0: Exploiting User's Real Name Field for Denial of Service and Unauthorized Account Actions

Stored Cross-site Scripting Vulnerability in QuickApps CMS 2.0.0: Exploiting User's Real Name Field for Denial of Service and Unauthorized Account Actions

CVE-2017-1000495 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

QuickApps CMS version 2.0.0 is vulnerable to Stored Cross-site Scripting in the user's real name field resulting in denial of service and performing unauthorised actions with an administrator user's account

Learn more about our Cms Pen Testing.