Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2021-3355

Disclosure Date: February 24, 2021 (last updated February 22, 2025)
A stored-self XSS exists in LightCMS v1.3.4, allowing an attacker to execute HTML or JavaScript code in a vulnerable Title field to /admin/SensitiveWords.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0