Vulnerability Details CVE-2018-20137
XSS exists in FUEL CMS 1.4.3 via the Page title, Meta description, or Meta keywords during page data management, as demonstrated by the pages/edit/1?lang=english URI.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 46.6%
CVSS Severity
CVSS v3 Score 4.8
CVSS v2 Score 3.5
References
Products affected by CVE-2018-20137
-
cpe:2.3:a:thedaylightstudio:fuel_cms:1.4.3