Gentics: >> Gentics Cms >> 5.43.0 Security Vulnerabilities
An issue was discovered in Gentics CMS before 5.43.1. By uploading a malicious ZIP file, an attacker is able to deserialize arbitrary data and hence can potentially achieve Java code execution.
CVSS Score
8.8
EPSS Score
0.004
Published
2022-07-17
An issue was discovered in Gentics CMS before 5.43.1. There is stored XSS in the profile description and in the username.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-07-17