CVE-2018-10125Cross-site Scripting in Contao

CWE-79Cross-site Scripting2 documents2 sources
Severity
MEDIUM
No vector
EPSS
0.3%
top 44.16%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
ContaoContao CoreContao Core-bundle
Timeline
PublishedFeb 10

Description

Cross-site Scripting in Contao Contao before 4.5.7 has XSS in the system log.

Affected Packages3 packages

Packagistcontao/core3.0.03.5.35
Packagistcontao/contao4.0.04.4.18+1
Packagistcontao/core-bundle4.0.04.4.18+2

🔴Vulnerability Details

2
OSV
Cross-site Scripting in Contao2022-02-10
GHSA
Cross-site Scripting in Contao2022-02-10
CVE-2018-10125 — Cross-site Scripting in Contao | cvebase