CVE-2018-6013
Cross-site scripting (XSS) in BigTree 4.2.19 allows any remote users to inject arbitrary web script or HTML via the directory parameter. This issue exists in core/admin/ajax/developer/extensions/file-browser.php.
Cross-site Scripting
Vendor | Product | Version |
---|---|---|
bigtreecms | bigtree_cms | 4.2.19 |
Common Weakness Enumeration