CVE-2017-1000488

Published January 3rd, 2018

View on NVD ↗

CVSS v3

N/A

CVSS v2

4.3

MEDIUM

Affected

PROJECT

Description

Mautic version 2.1.0 - 2.11.0 is vulnerable to an inline JS XSS attack when using Mautic forms on a Mautic landing page using GET parameters to pre-populate the form.

mautic/mautic

Mautic: Open Source Marketing Automation Software.

GitHub

9.82K