CVE-2021-40555
Published
CVSS v3
5.4
MEDIUM
CVSS v2
N/A
Affected
1
PROJECT
Description
Cross site scripting (XSS) vulnerability in flatCore-CMS 2.2.15 allows attackers to execute arbitrary code via description field on the new page creation form.
flatCore is a Web Content Management System (CMS) based on PHP and MySQL/SQLite.
GitHub