← Back to CVE List

CVE-2019-8410

Published: 2019-02-27T17:29Z
Last Modified: 2024-11-21T04:49Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
Maccms 8.0 allows XSS via the inc/config/cache.php t_key parameter because template/paody/html/vod_type.html mishandles the keywords parameter, and a/tpl/module/db.php only filters the t_name parameter (not t_key). > MITRE Terms of Use apply – see LICENSE‑MITRE.txt