Elefant CMS 1.3.12-RC: Multiple Persistent and Reflected XSS

February 16, 2017 007admin Leave a comment

Posted by Curesec Research Team (CRT) on Feb 16

Security Advisory – Curesec Research Team

1. Introduction

Affected Product: Elefant CMS 1.3.12-RC
Fixed in: 1.3.13
Fixed Version https://github.com/jbroadway/elefant/releases/tag/
Link: elefant_1_3_13_rc
Vendor Website: https://www.elefantcms.com/
Vulnerability XSS
Type:
Remote Yes
Exploitable:
Reported to 09/05/2016
vendor:
Disclosed to 02/02/2017
public:
Release mode:…

007 Software

Elefant CMS 1.3.12-RC: Multiple Persistent and Reflected XSS

Leave a Reply Cancel reply

Software and Security Information