CVE-2022-30072
Published
CVSS v3
5.4
MEDIUM
CVSS v2
3.5
LOW
Affected
2
PROJECTS
Description
WBCE CMS 1.5.2 is vulnerable to Cross Site Scripting (XSS) via \admin\pages\sections_save.php namesection2 parameters.
Core package of WBCE CMS. This package includes the core and the default addons. Visit https://wbce.org (DE) or https://wbce-cms.org (EN) to learn more or to join the WBCE CMS community.
GitHubGitHub