CVE-2017-11180

Published: 2017-07-12T00:29Z

Last Modified: 2024-11-21T03:07Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

FineCMS through 2017-07-11 has stored XSS in the logging functionality, as demonstrated by an XSS payload in (1) the User-Agent header of an HTTP request or (2) the username entered on the login screen. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt