5 matches found
Cross site scripting
An XSS issue was discovered in Catfish CMS 4.8.30, related to "write source code," a similar issue to CVE-2018-13999...
Catfish CMS Cross-Site Scripting Vulnerability (CNVD-2019-01927)
Catfish CMS is an open source content management system CMS written in PHP. A cross-site scripting vulnerability exists in Catfish CMS version 4.8.30, which can be exploited by remote attackers to inject code...
CVE-2018-18734
CVE-2018-18734 describes a Cross-Site Request Forgery (CSRF) in Catfish CMS 4.8.30, specifically in the admin/Index/addmanageuser.html page. The issue allows unauthorized actions (adding users) via CSRF. Connected sources confirm the vulnerable component and page in Catfish CMS 4.8.30 and indicat...
CVE-2018-18733
An XSS issue was discovered in Catfish CMS 4.8.30, related to "write source code," a similar issue to CVE-2018-13999...
CVE-2018-18734
A CSRF issue was discovered in admin/Index/addmanageuser.html in Catfish CMS 4.8.30...