First published: Thu Nov 07 2019(Updated: )
po-admin/route.php?mod=post&act=edit in PopojiCMS 2.0.1 allows post[1][content]= stored XSS.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Popojicms Popojicms | =2.0.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-18816 is a vulnerability in PopojiCMS 2.0.1 that allows for stored XSS through the 'po-admin/route.php?mod=post&act=edit' page.
CVE-2019-18816 has a severity level of medium with a score of 6.1.
CVE-2019-18816 affects PopojiCMS version 2.0.1.
To fix CVE-2019-18816, update PopojiCMS to a version that is not affected by the vulnerability.
More information about CVE-2019-18816 can be found at the following link: [https://github.com/PopojiCMS/PopojiCMS/issues/21]