Lucene search

K

Jspxcms Security Vulnerabilities

cve
cve

CVE-2024-1257

A vulnerability was found in Jspxcms 10.2.0. It has been classified as problematic. Affected is an unknown function of the file /ext/collect/find_text.do. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and.....

6.1CVSS

6AI Score

0.001EPSS

2024-02-06 08:16 PM
8
cve
cve

CVE-2024-1256

A vulnerability was found in Jspxcms 10.2.0 and classified as problematic. This issue affects some unknown processing of the file /ext/collect/filter_text.do. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may.....

4.3CVSS

4.5AI Score

0.001EPSS

2024-02-06 08:16 PM
15
cve
cve

CVE-2024-1200

A vulnerability was found in Jspxcms 10.2.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /template/1/default/. The manipulation leads to information disclosure. The attack may be launched remotely. The exploit has been disclosed to the public and.....

6.5CVSS

6.3AI Score

0.001EPSS

2024-02-03 02:15 AM
15
cve
cve

CVE-2024-0721

A vulnerability has been found in Jspxcms 10.2.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Survey Label Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to...

6.1CVSS

4.5AI Score

0.001EPSS

2024-01-19 04:15 PM
12
cve
cve

CVE-2024-0599

A vulnerability was found in Jspxcms 10.2.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file src\main\java\com\jspxcms\core\web\back\InfoController.java of the component Document Management Page. The manipulation of the argument title...

5.4CVSS

5.2AI Score

0.001EPSS

2024-01-16 08:15 PM
11
cve
cve

CVE-2023-46911

There is a Cross Site Scripting (XSS) vulnerability in the choose_style_tree.do interface of Jspxcms v10.2.0...

6.1CVSS

6AI Score

0.0005EPSS

2023-11-01 05:15 PM
16
cve
cve

CVE-2022-28090

Jspxcms v10.2.0 allows attackers to execute a Server-Side Request Forgery (SSRF) via...

6.5CVSS

6.6AI Score

0.001EPSS

2022-05-04 02:15 PM
47
2
cve
cve

CVE-2022-23329

A vulnerability in ${"freemarker.template.utility.Execute"?new() of UJCMS Jspxcms v10.2.0 allows attackers to execute arbitrary commands via uploading malicious...

9.8CVSS

9.6AI Score

0.003EPSS

2022-02-04 10:15 PM
120
cve
cve

CVE-2018-16553

In Jspxcms 9.0.0, a vulnerable URL routing implementation allows remote code execution after logging in as web...

7.2CVSS

7.4AI Score

0.005EPSS

2019-06-20 02:15 PM
72
cve
cve

CVE-2018-20596

Jspxcms v9.0.0 allows...

9.8CVSS

9.3AI Score

0.002EPSS

2018-12-30 06:29 PM
21