CVE-2021-27679

Published March 11th, 2021

View on NVD ↗

CVSS v3

5.4

MEDIUM

CVSS v2

3.5

LOW

Affected

PROJECT

Description

Cross-site scripting (XSS) vulnerability in Navigation in Batflat CMS 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the field name.

sruupl/batflat

Lightweight, fast and easy CMS for free. Bootstrap ready. https://batflat.org

GitHub

138