QuickApps CMS version 2.0.0 is vulnerable to Stored Cross-site Scripting in the user's real name field resulting in denial of service and performing unauthorised actions with an administrator user's account
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| quickapps/cms(Packagist) | 0 | 2.0.0 | N/A |
CVSS Metrics
