CVE-2015-9260

Published
View on NVD ↗
CVSS v3
5.4
MEDIUM
CVSS v2
3.5
LOW
Affected
2
PROJECTS

Description

An issue was discovered in BEdita before 3.7.0. A cross-site scripting (XSS) attack occurs via a crafted pages/showObjects URI, as demonstrated by appending a payload to a pages/showObjects/2/0/0/leafs URI.

cybersecurityworks/Disclosed
cybersecurityworks/Disclosed
Disclosing Bugs
GitHubGitHub
3
bedita/bedita
bedita/bedita
BEdita, ready to use back-end API, extensible API-first Content Management
GitHubGitHub
68