Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-66507
HistoryJun 09, 2022 - 12:00 a.m.

OFCMS Cross-Site Scripting Vulnerability

2022-06-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
ofcms
cross-site scripting
vulnerability
china zhongtian network technology
java
user-supplied data
data validation
javascript

EPSS

0.001

Percentile

31.3%

JSON

OFCMS is a content management system (CMS) developed by China Zhongtian Network Technology Company using Java language. v1.1.4 of OFCMS has a cross-site scripting vulnerability, which originates from the component /admin/comn/service/update.json lack of data validation filtering for user-supplied data and output data. An attacker could use this vulnerability to execute JavaScript code.

Related

prion 1
cvelist 1
cve 1
nvd 1
prion
prion
Cross site scripting
2022-06-02 14:15:00
cvelist
cvelist
CVE-2022-29653
2022-05-31 21:41:06
cve
cve
CVE-2022-29653
2022-06-02 14:15:50
nvd
nvd
CVE-2022-29653
2022-06-02 14:15:50

EPSS

0.001

Percentile

31.3%

JSON
Related for CNVD-2022-66507
prion1cvelist1cve1nvd1