← Back to CVE List
CVE-2017-18175
Progress Sitefinity 9.1 has XSS via the Content Management Template Configuration (aka Templateconfiguration), as demonstrated by the src attribute of an IMG element. This is fixed in 10.1.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt