Cross-Site Scripting (XSS) Vulnerabilities in Mura CMS 7.0.6967

Cross-Site Scripting (XSS) Vulnerabilities in Mura CMS 7.0.6967

CVE-2017-8302 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

Mura CMS 7.0.6967 allows admin/?muraAction= XSS attacks, related to admin/core/views/carch/list.cfm, admin/core/views/carch/loadsiteflat.cfm, admin/core/views/cusers/inc/dsp_nextn.cfm, admin/core/views/cusers/inc/dsp_search_form.cfm, admin/core/views/cusers/inc/dsp_users_list.cfm, admin/core/views/cusers/list.cfm, and admin/core/views/cusers/listusers.cfm.

Learn more about our Cms Pen Testing.