Lucene search
CVE-2021-28088
🗓️ 11 Mar 2021 17:13:15Reported by mitreType 
cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 30 Views🌐 WEB
Cross-site scripting (XSS) in ImpressCMS profile 1.4.
Show more
| Reporter | Title | Published | Views | Family All 7 |
|---|---|---|---|---|
 | Cross-site scripting (XSS) | 12 Mar 202121:34 | – | osv |
| CVE-2021-28088 | 11 Mar 202117:15 | – | osv |
 | CVE-2021-28088 | 11 Mar 202116:23 | – | cvelist |
 | ImpressCMS Cross-Site Scripting Vulnerability (CNVD-2021-17253) | 12 Mar 202100:00 | – | cnvd |
 | Cross site scripting | 11 Mar 202117:15 | – | prion |
 | CVE-2021-28088 | 11 Mar 202117:15 | – | nvd |
 | Cross-site scripting (XSS) | 12 Mar 202121:34 | – | github |
Node
| Source | Link |
|---|---|
| anotepad | www.anotepad.com/note/read/s3kkk6h7 |
| hackerone | www.hackerone.com/reports/1119296 |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| Display Name | request body | /modules/content/admin/content.php | Cross-site scripting vulnerability allowing arbitrary script injection through the 'Display Name' field. | CWE-79 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo11 Mar 2021 17:15Current
5.4Medium risk
Vulners AI Score5.4
CVSS23.5
CVSS35.4
EPSS0.00164