CVE-2018-16775: XSS
First published: Mon Sep 10 2018(Updated: )
An issue was discovered in Victor CMS through 2018-05-10. There is XSS via the site name in the "Categories" menu.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Victor Cms Project Victor Cms | <=2018-05-10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2018-16775?
CVE-2018-16775 refers to an issue discovered in the Victor CMS software, allowing for cross-site scripting (XSS) attacks via the site name in the "Categories" menu.
How severe is CVE-2018-16775?
CVE-2018-16775 has a severity rating of 4.8, which is considered medium.
How can I fix CVE-2018-16775?
To fix CVE-2018-16775, it is recommended to update to a version of Victor CMS that is after May 10, 2018 or apply any patches or fixes provided by the Victor CMS project.
What is the affected software for CVE-2018-16775?
The affected software for CVE-2018-16775 is Victor CMS with a version up to and including May 10, 2018.
What is the CWE category of CVE-2018-16775?
CVE-2018-16775 is categorized under CWE-79, which is Cross-Site Scripting (XSS).
- collector/nvd-index
- vendor/victor cms project
- canonical/victor cms project victor cms
- version/victor cms project victor cms/2018-05-10