According to its self-reported version number, the instance of SiteServer CMS hosted on the remote web server is 6.15.51. It is, therefore, affected by :
A Cross Site Scripting (XSS) flaw into the TbItemName parameters (CVE-2021-42656, CVE-2022-30349).
A SQL injection vulnerability in the /api/pages/cms/libraryText/list endpoint (CVE-2021-42655).
Note that the scanner has not tested for these issues but has instead relied only on the application’s self-reported version number.
No source data