Stored XSS Vulnerability in BigTree Image Upload Area

Stored XSS Vulnerability in BigTree Image Upload Area

CVE-2018-18308 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

In the 4.2.23 version of BigTree, a Stored XSS vulnerability has been discovered in /admin/ajax/file-browser/upload/ (aka the image upload area).

Learn more about our Web Application Penetration Testing UK.