8 matches found
CVE-2017-20057
A vulnerability classified as problematic has been found in Elefant CMS 1.3.12-RC. Affected is an unknown function. The manipulation of the argument username leads to basic cross site scripting Persistent. It is possible to launch the attack remotely. Upgrading to version 1.3.13 is able to addres...
Elefant CMS Cross-Site Scripting Vulnerability (CNVD-2022-58245)
Elefant CMS is a simple PHP content management system and web framework by Canadian John de Plume, an individual developer. A security vulnerability exists in Elefant CMS version 1.3.12-RC, which can be exploited by attackers to perform cross-site scripting attacks...
Elefant CMS Cross-Site Scripting Vulnerability (CNVD-2022-58244)
Elefant CMS is a simple PHP content management system and web framework by Canadian John de Plume, an individual developer. A security vulnerability exists in Elefant CMS version 1.3.12-RC, which can be exploited by attackers to perform cross-site scripting attacks...
Cross site scripting in Elefant CMS
A vulnerability classified as problematic has been found in Elefant CMS 1.3.12-RC. Affected is an unknown function. The manipulation of the argument username leads to basic cross site scripting Persistent. It is possible to launch the attack remotely. Upgrading to version 1.3.13 is able to addres...
Code injection
A vulnerability was found in Elefant CMS 1.3.12-RC. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /designer/add/layout. The manipulation leads to code injection. The attack can be launched remotely. Upgrading to version 1.3.13 is able to...
CVE-2017-20062
CVE-2017-20062 affects Elefant CMS 1.3.12-RC. The issue is a cross-site request forgery (CSRF) vulnerability that can be manipulated remotely; exploit has been disclosed publicly. Upgrading to version 1.3.13 mitigates the issue. Multiple connected sources (RH, NVD, OSV, CNVD, CNVD/Vuln enrichment...
Elefant CMS 代码问题漏洞
Elefant CMS is a simple PHP content management system and web framework by Canadian John de Plume, an individual developer. A security vulnerability exists in Elefant CMS version 1.3.12-RC, which stems from unknown functionality in file/filemanager/upload/drop for component file uploads. A remote...
Elefant CMS 跨站脚本漏洞
Elefant CMS is a simple PHP content management system and web framework by Canadian John de Plume, an individual developer. A security vulnerability exists in Elefant CMS version 1.3.12-RC, which can be exploited by attackers to perform cross-site scripting attacks...