CVE-2018-7198

CVE: CVE-2018-7198
Published: 2018-02-18T03:29Z
Vendor: octobercms
Products: october_cms
Versions: 1.0.431,
Description Language: en
Description: October CMS through 1.0.431 allows XSS by entering HTML on the Add Posts page.
References:
http://securitywarrior9.blogspot.com/2018/02/html-injection-october-cms.html
https://www.exploit-db.com/exploits/44144/