CVE-2018-6550

CVE: CVE-2018-6550
Published: 2018-02-02T09:29Z
Vendor: monstra
Products: monstra
Versions: 3.0.4,
Description Language: en
Description: Monstra CMS through 3.0.4 has XSS in the title function in plugins/box/pages/pages.plugin.php via a page title to admin/index.php.
References:
https://github.com/monstra-cms/monstra/commit/388ab412035474068758df6b07e7e06852f3747b
https://github.com/monstra-cms/monstra/issues/427