Stored XSS Vulnerability in Monstra CMS 3.0.4 via Name Field on Create New Page Screen

Stored XSS Vulnerability in Monstra CMS 3.0.4 via Name Field on Create New Page Screen

CVE-2018-10118 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

Monstra CMS 3.0.4 has Stored XSS via the Name field on the Create New Page screen under the admin/index.php?id=pages URI, related to plugins/box/pages/pages.admin.php.

Learn more about our Cms Pen Testing.