First published: Thu Jul 06 2023(Updated: )
A stored cross-site scripting (XSS) vulnerability in the Basic Information module of eyoucms v1.6.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Eyoucms Eyoucms | =1.6.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The CVE ID for this vulnerability is CVE-2023-37134.
The severity level of CVE-2023-37134 is medium.
The affected software version is eyoucms v1.6.3.
An attacker can exploit this vulnerability by crafting a payload that allows them to execute arbitrary web scripts or HTML.
Yes, there is a fix available for this vulnerability. It is recommended to update to a version that has addressed this vulnerability.