Lucene search
K

55 matches found

CNNVD
CNNVD
added 2021/07/02 12:0 a.m.5 views

CMS Made Simple 跨站脚本漏洞

CMS Made Simple CMSMS is an open source content management system that provides developers, programmers, and website owners with a web-based version of the development and management interface. A stored cross-site scripting vulnerability exists in CMS Made Simple version 2.2.14, which can be...

5.4CVSS5.5AI score0.00473EPSS
Exploits1References1
CNVD
CNVD
added 2020/03/13 12:0 a.m.2 views

Chadha PHPKB Cross-Site Scripting Vulnerability (CNVD-2020-17209)

Chadha PHPKB is a knowledge base software that keeps information organized, accessible and manageable for internal teams and external clients. A reflected cross-site scripting vulnerability exists in admin/add-article.php in Chadha PHPKB Standard Multilingual Version 9. The vulnerability stems fr...

4.8CVSS5.9AI score0.00733EPSS
Exploits1References1
OSV
OSV
added 2020/03/12 2:15 p.m.3 views

CVE-2020-10391

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/add-article.php by adding a question mark ? followed by the payload...

4.8CVSS5.9AI score0.00733EPSS
Exploits2References2
OSV
OSV
added 2019/10/16 2:15 p.m.4 views

CVE-2019-17630

CMS Made Simple CMSMS 2.2.11 allows stored XSS by an admin via a crafted image filename on the "News Add Article" screen...

4.8CVSS5.8AI score0.00541EPSS
Exploits1References2
Prion
Prion
added 2019/10/16 2:15 p.m.17 views

Design/Logic Flaw

CMS Made Simple CMSMS 2.2.11 allows stored XSS by an admin via a crafted image filename on the "News Add Article" screen...

3.5CVSS4.7AI score0.00541EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2019/10/16 12:23 p.m.14 views

CVE-2019-17630

CMS Made Simple CMSMS 2.2.11 allows stored XSS by an admin via a crafted image filename on the "News Add Article" screen...

4.8AI score0.00541EPSS
Exploits1References2
OSV
OSV
added 2019/06/05 6:29 p.m.6 views

CVE-2019-11226

CMS Made Simple 2.2.10 has XSS via the m1name parameter in "Add Article" under Content - Content Manager - News...

5.4CVSS6AI score0.00917EPSS
Exploits3References3
Cvelist
Cvelist
added 2019/06/05 5:56 p.m.34 views

CVE-2019-11226

CMS Made Simple 2.2.10 has XSS via the m1name parameter in "Add Article" under Content - Content Manager - News...

5.2AI score0.00917EPSS
Exploits3References3
CVE
CVE
added 2019/06/05 5:56 p.m.65 views

CVE-2019-11226

CVE-2019-11226 : CMS Made Simple 2.2.10 contains a cross-site scripting (XSS) vulnerability reachable via the m1_name parameter in the Add Article workflow under Content → Content Manager → News. Several sources describe this as an XSS issue (some references note authenticated, persistent XSS beh...

5.4CVSS5.2AI score0.00917EPSS
Exploits3References3Affected Software1
OpenVAS
OpenVAS
added 2019/04/29 12:0 a.m.67 views

CMS Made Simple <= 2.2.12 Multiple Reflected XSS Vulnerabilities

CMS Made Simple is prone to multiple reflected cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5.4CVSS5.2AI score0.00917EPSS
Exploits8References4
Prion
Prion
added 2018/10/12 7:29 p.m.17 views

Cross site scripting

XSS exists in CMS Made Simple version 2.2.7 via the m1newsurl parameter in an admin/moduleinterface.php "Content--News--Add Article" action...

4.3CVSS6AI score0.00833EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2018/10/12 7:29 p.m.3 views

CVE-2018-18271

XSS exists in CMS Made Simple version 2.2.7 via the m1extra parameter in an admin/moduleinterface.php "Content--News--Add Article" action...

6.1CVSS5.8AI score0.00826EPSS
Exploits1References1
OSV
OSV
added 2018/06/13 7:29 p.m.3 views

CVE-2018-12339

ArticleCMS through 2017-02-19 has XSS via an "add an article" action...

5.4CVSS5.8AI score0.00483EPSS
Exploits1References1
NVD
NVD
added 2018/06/13 7:29 p.m.10 views

CVE-2018-12339

ArticleCMS through 2017-02-19 has XSS via an "add an article" action...

5.4CVSS5.3AI score0.00483EPSS
Exploits1References1
CNVD
CNVD
added 2017/03/28 12:0 a.m.2 views

CMS Made Simple Cross-Site Scripting Vulnerability (CNVD-2017-04704)

CMS Made Simple CMSMS is an open source content management system CMS developed by the CMSMS team. The system supports role-based rights management system , wizard-based installation and update mechanism , intelligent caching mechanism and so on. A cross-site scripting vulnerability exists in the...

5.4CVSS6.3AI score0.0052EPSS
Exploits1References1
CNVD
CNVD
added 2017/03/28 12:0 a.m.7 views

CMS Made Simple Cross-Site Scripting Vulnerability (CNVD-2017-04711)

CMS Made Simple CMSMS is an open source content management system CMS developed by the CMSMS team. The system supports role-based rights management system , wizard-based installation and update mechanism , intelligent caching mechanism and so on. A cross-site scripting vulnerability exists in the...

5.4CVSS6.1AI score0.0052EPSS
Exploits1References1
CNVD
CNVD
added 2017/03/28 12:0 a.m.6 views

CMS Made Simple Cross-Site Scripting Vulnerability (CNVD-2017-04705)

CMS Made Simple CMSMS is an open source content management system CMS developed by the CMSMS team. The system supports role-based rights management system , wizard-based installation and update mechanism , intelligent caching mechanism and so on. A cross-site scripting vulnerability exists in the...

5.4CVSS6.1AI score0.0052EPSS
Exploits1References1
NVD
NVD
added 2017/03/24 3:59 p.m.25 views

CVE-2017-7255

XSS exists in the CMS Made Simple CMSMS 2.1.6 "Content--News--Add Article" feature via the m1title parameter. Someone must login to conduct the attack...

5.4CVSS5.3AI score0.0052EPSS
Exploits1References2
OSV
OSV
added 2017/03/24 3:59 p.m.2 views

CVE-2017-7256

XSS exists in the CMS Made Simple CMSMS 2.1.6 "Content--News--Add Article" feature via the m1summary parameter. Someone must login to conduct the attack...

5.4CVSS5.8AI score0.0052EPSS
Exploits1References2
OSV
OSV
added 2017/03/24 3:59 p.m.3 views

CVE-2017-7257

XSS exists in the CMS Made Simple CMSMS 2.1.6 "Content--News--Add Article" feature via the m1content parameter. Someone must login to conduct the attack...

5.4CVSS5.8AI score0.0052EPSS
Exploits1References2
Rows per page
Query Builder