Download full backup and Cross site scripting
High
I
ImpressCMS
Submitted None
Team Summary
Official summary from ImpressCMS
A backup zip file was still left on the server, which was removed. Moreover, an old unused content editor was still left and could be used by a malicious user. The unused editor has been removed as well.
Actions:
Reported by
kurdishhacked
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Submitted
Weakness
Cross-site Scripting (XSS) - Reflected