CVE-2018-6313

CVE: CVE-2018-6313
Published: 2018-01-25T22:29Z
Vendor: wbce
Products: wbce_cms
Versions: 1.3.1,
Description Language: en
Description: Cross-site scripting (XSS) in WBCE CMS 1.3.1 allows remote authenticated administrators to inject arbitrary web script or HTML via the Modify Page screen, a different issue than CVE-2017-2118.
References:
https://github.com/imsebao/404team/blob/master/wbce_cms_xss.md