CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

OSV•added 2021/06/23 7:15 p.m.•1 views

CVE-2020-23962

A cross site scripting XSS vulnerability in Catfish CMS 4.9.90 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the "announcementgonggao" parameter...

6.1CVSS5.6AI score0.0024EPSS

Exploits1References1

Prion•added 2021/06/23 7:15 p.m.•11 views

Cross site scripting

A cross site scripting XSS vulnerability in Catfish CMS 4.9.90 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the "announcementgonggao" parameter...

4.3CVSS6AI score0.0024EPSS

Exploits1References1Affected Software1

CVE•added 2021/06/23 6:6 p.m.•66 views

CVE-2020-23962

This CVE-2020-23962 is a documented XSS vulnerability in Catfish CMS 4.9.90. The flaw allows an attacker to inject arbitrary web scripts/HTML via the announcement_gonggao parameter, enabling script execution in the victim’s browser. The affected component is Catfish CMS (version 4.9.90); the root...

6.1CVSS6AI score0.0024EPSS

Exploits1References1Affected Software1

CNNVD•added 2021/06/23 12:0 a.m.•0 views

Catfish CMS 跨站脚本漏洞

Catfish Catfish CMS is open source and free PHP CMS web content management system. A cross-site scripting vulnerability exists in Catfish CMS version 4.9.90. An attacker can exploit this vulnerability to execute arbitrary Web script or HTML via the announcementgonggao parameter...

6.1CVSS5.6AI score0.0024EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by