Cross-site scripting (XSS) vulnerability in pm.php in PCXP/TOPPE CMS allows remote attackers to inject arbitrary web script or HTML via the msg variable.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Pc-experience | Pc-experience | 2.0 | 2.0 |
Pc-experience | Pc-experience | 1.15 | 1.15 |
Toppe_cms | Toppe | * | * |