CVE-2018-7261: Cross-site Scripting

February 21, 2018 (updated March 1, 2019)

There are multiple Persistent XSS vulnerabilities in Radiant CMS. They affect Personal Preferences (Name and Username) and Configuration (Site Title, Dev Site Domain, Page Parts, and Page Fields).

References

www.securityfocus.com/archive/1/541798/100/0/threaded
www.securityfocus.com/bid/103080
nvd.nist.gov/vuln/detail/CVE-2018-7261

Detect and mitigate CVE-2018-7261 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →