EUVD-2018-20422

Malware in sbrugna...

CVE-2019-25070

CVE-2019-25070 affects WolfCMS up to version 0.8.3.1 in the User Add path (/wolfcms/?/admin/user/add). The vulnerability arises from improper handling of the name parameter, enabling basic cross-site scripting (XSS). Exploitation can be remote and public disclosures exist. Several connected sourc...

PT-2022-8292 · Wolfcms · Wolf Cms

Name of the Vulnerable Software and Affected Versions: WolfCMS versions up to 0.8.3.1 Description: A vulnerability was found in WolfCMS that affects the processing of the file /wolfcms/?/admin/user/add of the component User Add. The manipulation of the name argument leads to basic cross site...

CVE-2018-18823

WolfCMS 0.8.3.1 allows XSS via an SVG file to /?/admin/plugin/filemanager/browse/...

CVE-2018-15842

WolfCMS 0.8.3.1 has XSS via the /?/admin/page/add slug parameter...

Code injection

WolfCMS 0.8.3.1 has XSS via the /?/admin/page/add slug parameter...

CVE-2018-15842

WolfCMS 0.8.3.1 has XSS via the /?/admin/page/add slug parameter...

Wolf CMS Cross-Site Scripting Vulnerability (CNVD-2018-15770)

Wolf CMS is a PHP-based open source content management system CMS developed by the Wolf CMS team. The system provides user interface , templates , user management and rights management and other functions . A cross-site scripting vulnerability exists in the Snippets tag in Wolf CMS version 0.8.3....

Code injection

Wolf CMS 0.8.3.1 has XSS in the Snippets tab, as demonstrated by a ?/admin/snippet/edit/1 URI...

Wolf CMS Cross-Site Request Forgery Vulnerability

Wolf CMS is a PHP-based open source content management system CMS developed by the Wolf CMS team. The system provides user interface , templates , user management and rights management and other functions . A cross-site request forgery vulnerability exists in Wolf CMS version 0.8.3.1. A remote...

WolfCMS Open Redirect Vulnerability

WolfCMS is a PHP-based open source content management system CMS developed by the Wolf CMS team. The system provides user interface , templates , user management and rights management and other functions . An open redirection vulnerability exists in the login feature in WolfCMS version 0.8.3.1. A...

CVE-2018-8813

Open redirect vulnerability in the loginredirect parameter login functionality in WolfCMS 0.8.3.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a malformed URL...

CVE-2018-8814

Cross-site request forgery CSRF vulnerability in WolfCMS 0.8.3.1 allows remote attackers to hijack the authentication of users for requests that modify plugin/pluginname/settings by crafting a malicious request...

CVE-2018-8813

Open redirect vulnerability in the loginredirect parameter login functionality in WolfCMS 0.8.3.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a malformed URL...

WolfCMS Cross-Site Scripting Vulnerability (CNVD-2018-07056)

Wolf CMS is a lightweight content management system written in PHP. A stored cross-site scripting vulnerability exists in WolfCMS 0.8.3.1 in the Layout Name under the Layout tab. A low-privileged user can exploit this vulnerability to steal cookies from administrative users and compromise the...

CVE-2018-1000084

WOlfCMS WolfCMS version version 0.8.3.1 contains a Stored Cross-Site Scripting vulnerability in Layout Name from Layout tab that can result in low privilege user can steal the cookie of admin user and compromise the admin account. This attack appear to be exploitable via Need to enter the...

CVE-2018-1000084

WOlfCMS WolfCMS version version 0.8.3.1 contains a Stored Cross-Site Scripting vulnerability in Layout Name from Layout tab that can result in low privilege user can steal the cookie of admin user and compromise the admin account. This attack appear to be exploitable via Need to enter the...

Cross site scripting

WolfCMS version version 0.8.3.1 contains a Reflected Cross Site Scripting vulnerability in "Create New File" and "Create New Directory" input box from 'files' Tab that can result in Session Hijacking, Spread Worms,Control the browser remotely. . This attack appear to be exploitable via Attacker c...

CVE-2018-1000084

WOlfCMS WolfCMS version version 0.8.3.1 contains a Stored Cross-Site Scripting vulnerability in Layout Name from Layout tab that can result in low privilege user can steal the cookie of admin user and compromise the admin account. This attack appear to be exploitable via Need to enter the...

Wolf CMS Cross-Site Scripting Vulnerability (CNVD-2018-05819)

Wolf CMS is a PHP-based open source content management system CMS developed by the Wolf CMS team. The system provides user interface , templates , user management and rights management and other functions . A cross-site scripting vulnerability exists in Wolf CMS version 0.8.3.1. A remote attacker...