CVE-2017-16514
10.01.2018, 17:29
Multiple persistent stored Cross-Site-Scripting (XSS) vulnerabilities in the files /wb/admin/admintools/tool.php (Droplet Description) and /install/index.php (Site Title) in WebsiteBaker 2.10.0 allow attackers to insert persistent JavaScript code that gets reflected back to users in multiple areas in the application.
| Vendor | Product | Version |
|---|---|---|
| websitebaker | websitebaker | 2.10.0 |
𝑥
= Vulnerable software versions