XSS in Theme Preview Tools File
Unknown
Vulnerability Details
https://github.com/concrete5/concrete5/blob/master/web/concrete/tools/themes/preview.php#L7
Note that one of those values near the end is not escaped.
Actions
View on HackerOneReport Stats
- Report ID: 4777
- State: Closed
- Substate: resolved
- Upvotes: 1