CVE-2018-5370

CVE: CVE-2018-5370
Published: 2018-01-16T19:29Z
Vendor: bizlogicdev
Products: xnami
Versions: 1.0,
Description Language: en
Description: BizLogic xnami 1.0 has XSS via the comment parameter in an addComment action to the /media/ajax URI.
References:
http://packetstormsecurity.com/files/145872/Xnami-Image-Sharing-1.0-Cross-Site-Scripting.html
https://www.exploit-db.com/exploits/43535/