Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2025/12/16 8:44 p.m.6 views

CVE-2023-53892

Blackcat CMS 1.4 contains a remote code execution vulnerability that allows authenticated administrators to upload malicious PHP files through the jquery plugin manager. Attackers can upload a zip file with a PHP shell script and execute arbitrary system commands by accessing the uploaded plugin'...

8.6CVSS8.6AI score0.00783EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/12/15 8:28 p.m.5 views

CVE-2023-53892 Blackcat CMS 1.4 Remote Code Execution via Jquery Plugin Manager

Blackcat CMS 1.4 contains a remote code execution vulnerability that allows authenticated administrators to upload malicious PHP files through the jquery plugin manager. Attackers can upload a zip file with a PHP shell script and execute arbitrary system commands by accessing the uploaded plugin'...

8.6CVSS8.3AI score0.00783EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/12/15 8:28 p.m.22 views

CVE-2023-53892 Blackcat CMS 1.4 Remote Code Execution via Jquery Plugin Manager

Blackcat CMS 1.4 contains a remote code execution vulnerability that allows authenticated administrators to upload malicious PHP files through the jquery plugin manager. Attackers can upload a zip file with a PHP shell script and execute arbitrary system commands by accessing the uploaded plugin'...

8.6CVSS0.00783EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/12/15 8:28 p.m.19 views

CVE-2023-53891 Blackcat CMS 1.4 Stored Cross-Site Scripting via Page Modification

Blackcat CMS 1.4 contains a stored cross-site scripting vulnerability that allows authenticated users to inject malicious scripts into page content. Attackers can insert JavaScript payloads in the page modification interface that execute when other users view the compromised page...

5.1CVSS0.00205EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/09/27 12:0 a.m.3 views

Blackcat Cms Cross-Site Scripting Vulnerability

Blackcat Cms is a Php-based content management system from the Blackcat team. A cross-site scripting vulnerability exists in Blackcat Cms version 1.4.1, which stems from a cross-site scripting XSS vulnerability in /settings/index.php that allows an attacker to inject a crafted payload via the sit...

6.1CVSS5.8AI score0.00482EPSS
Exploits1References2
CNNVD
CNNVD
added 2021/02/16 12:0 a.m.7 views

Blackcat Cms 跨站脚本漏洞

BlackCat CMS is a PHP5, HTML5 content management system. A stored cross-site scripting vulnerability exists in BlackCat CMS 1.3.6. The vulnerability can be exploited to conduct a cross-site scripting attack via the Display Name field in backend/preferences/ajaxsave.php...

4.8CVSS5.6AI score0.0096EPSS
Exploits1References4
CNVD
CNVD
added 2017/08/31 12:0 a.m.4 views

BlackCat CMS Cross-Site Scripting Vulnerability (CNVD-2017-24888)

BlackCat CMS is a PHP5, HTML5 content management system. A cross-site scripting vulnerability exists in the backend/settings/ajaxsavesettings.php file in BlackCat CMS, which can be exploited by remote attackers via the site title or site footer fields...

5.4CVSS5.3AI score0.0058EPSS
Exploits0References1
CNVD
CNVD
added 2017/08/31 12:0 a.m.7 views

BlackCat CMS Arbitrary PHP Code Execution Vulnerability

BlackCat CMS is a PHP5, HTML5 content management system. An arbitrary PHP code execution vulnerability exists in the backend/addons/install.php file in BlackCat CMS, which can be exploited by remote attackers to execute arbitrary PHP code via a ZIP archive containing the .php file...

8.8CVSS9.1AI score0.01164EPSS
Exploits0References1
CNVD
CNVD
added 2015/07/12 12:0 a.m.5 views

BlackCat CMS Directory Traversal Vulnerability

BlackCat CMS is a content management system based on PHP5 and HTML5. BlackCat CMS suffers from a directory traversal vulnerability that allows remote attackers to view the contents of system files with WEB privileges by submitting a character containing a directory traversal...

7.5CVSS6.9AI score0.17314EPSS
Exploits2References1
Rows per page
Query Builder