Early Access — Mondoo Vulnerability Intelligence is currently in preview.
A stored cross-site scripting (XSS) vulnerability in the Media module of Piranha CMS v12.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name field.
Exploitability
AV:NAC:LAT:NPR:LUI:AVulnerable System
VC:NVI:NVA:NSubsequent System
SC:LSI:LSA:NCVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:P