hpj233

1 exploit Active since Apr 2021
CVE-2020-18022 WRITEUP MEDIUM WRITEUP
Qibosoft QiboCMS v7 - Cross-Site Scripting via ewebeditor kindeditor.js Component
Cross Site Scripting (XSS) in Qibosoft QiboCMS v7 and earlier allows remote attackers to execute arbitrary code or obtain sensitive information by injecting arbitrary commands in a HTTP request to the "ewebeditor\3.1.1\kindeditor.js" component.
CVSS 6.1