First published: Sun Apr 02 2023(Updated: )
A vulnerability, which was classified as problematic, has been found in EyouCMS up to 1.5.4. Affected by this issue is some unknown functionality of the file login.php. The manipulation of the argument typename leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-224750 is the identifier assigned to this vulnerability.
Credit: cna@vuldb.com cna@vuldb.com
Affected Software | Affected Version | How to fix |
---|---|---|
Eyoucms Eyoucms | <=1.5.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2023-1798.
The severity level of CVE-2023-1798 is medium (5.4).
The affected software is EyouCMS up to version 1.5.4.
The CWE ID for CVE-2023-1798 is CWE-79.
To fix the EyouCMS login.php cross site scripting vulnerability, update EyouCMS to a version higher than 1.5.4.