First published: Thu Oct 10 2019(Updated: )
PbootCMS 2.0.2 allows XSS via vectors involving the Pboot/admin.php?p=/Single/index/mcode/1 and Pboot/?contact/ URIs.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Pbootcms Pbootcms | =2.0.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-17417 refers to a vulnerability in PbootCMS 2.0.2 that allows for cross-site scripting (XSS) attacks.
CVE-2019-17417 allows for XSS attacks via specific vectors involving Pboot/admin.php?p=/Single/index/mcode/1 and Pboot/?contact/ URIs.
CVE-2019-17417 has a severity level of medium, with a CVSS score of 4.8.
To fix the CVE-2019-17417 vulnerability in PbootCMS 2.0.2, you should update to a newer version that addresses the XSS vulnerability.
For more information, you can refer to the GitHub issue associated with CVE-2019-17417: https://github.com/lolipop1234/XXD/issues/2