CVE-2017-8376: Cross-site Scripting

May 1, 2017 (updated May 10, 2017)

GeniXCMS contains an XSS that can be triggered by an authenticated comment that is mishandled during a mouse operation by an administrator.

References

nvd.nist.gov/vuln/detail/CVE-2017-8376

Code Behaviors & Features

Detect and mitigate CVE-2017-8376 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →