Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2018-7547

Disclosure Date: February 27, 2018 (last updated November 26, 2024)
lyadmin 1.x has XSS via the config[WEB_SITE_TITLE] parameter to the /admin.php?s=/admin/config/groupsave.html URI.
Attack Vector: NetworkPrivileges: HighUser Interaction: Required
0
0