Vulnerabilities > Luya > Luya CMS

DATE CVE VULNERABILITY TITLE RISK
2018-10-15 CVE-2018-18259 Cross-site Scripting vulnerability in Luya CMS 1.0.12
Stored XSS has been discovered in version 1.0.12 of the LUYA CMS software via /admin/api-cms-nav/create-page.
network
luya CWE-79
4.3
4.3