CNNVD-202601-2861 Information

CNNVD ID

CNNVD-202601-2861

Related CVE

CVE-2021-47808

• CNNVD Published: 2026-01-16

Description (Chinese)

Cotonti Siena是Cotonti开源的一个功能强大的开源 Web 开发框架和内容管理器。 Cotonti Siena 0.9.19版本存在安全漏洞，该漏洞源于管理员配置面板的站点标题参数存在存储型跨站脚本，可能导致执行恶意JavaScript代码。

Description (English)

Cotonti Siena is a powerful open source for the Cotonti open source. The security gap in version 0.9.19 of Cotonti Siena stems from the presence of stored cross-site scripts in the site title parameters of the administrator ’ s configuration panel, which may result in the implementation of malicious JavaScript codes.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Cotonti

Published

2026-01-16

Last Modified

2026-02-24

References

https://cotonti.com https://www.cotonti.com/download/ https://www.exploit-db.com/exploits/50016 https://www.vulncheck.com/advisories/cotonti-siena-maintitle-stored-cross-site-scripting