Posted on Leave a comment

CVE-2019-6243

Frog CMS 0.9.5 allows XSS via the forgot password page (aka the /admin/?/login/forgot URI).

Leave a Reply

Your email address will not be published. Required fields are marked *