64 matches found
CVE-2022-21142
Authentication bypass vulnerability in a-blog cms Ver.2.8.x series versions prior to Ver.2.8.74, Ver.2.9.x series versions prior to Ver.2.9.39, Ver.2.10.x series versions prior to Ver.2.10.43, and Ver.2.11.x series versions prior to Ver.2.11.41 allows a remote unauthenticated attacker to bypass...
Appleple a-blog cms 跨站脚本漏洞
Appleple a-blog cms is a content management system CMS from appleple Appleple Japan. A cross-site scripting vulnerability exists in a-blog cms, which originates. The vulnerability exists because user-supplied data is not adequately processed. A remote user can trick a victim into following a...
blog.contentrunner.com Cross Site Scripting vulnerability OBB-2343515
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2020-20605
Blog CMS v1.0 contains a cross-site scripting XSS vulnerability in the /controller/CommentAdminController.java component...
FlatPress Cross-Site Scripting Vulnerability (CNVD-2020-75633)
FlatPress is a lightweight, easy to set up blogging engine. A cross-site scripting vulnerability exists in the "Blog Content" component of FlatPress 1.0.3. An attacker can exploit this vulnerability to steal cookies...
FluxBB Cross-Site Scripting Vulnerability
FluxBB is an open source forum application. A cross-site scripting vulnerability exists in the "Blog Content" component of FluxBB 1.5.11. An attacker can exploit this vulnerability to steal cookies...
CVE-2020-35240
FluxBB 1.5.11 is affected by cross-site scripting XSS in the Blog Content component. This vulnerability can allow an attacker to inject the XSS payload in "Blog Content" and each time any user will visit the blog, the XSS triggers and the attacker can able to steal the cookie according to the...
CVE-2020-35241
FlatPress 1.0.3 is affected by cross-site scripting XSS in the Blog Content component. This vulnerability can allow an attacker to inject the XSS payload in Blog content via the admin panel. Each time any user will go to that blog page, the XSS triggers and the attacker can steal the cookie...
CVE-2020-35241
FlatPress 1.0.3 is affected by cross-site scripting XSS in the Blog Content component. This vulnerability can allow an attacker to inject the XSS payload in Blog content via the admin panel. Each time any user will go to that blog page, the XSS triggers and the attacker can steal the cookie...
CVE-2020-35240
FluxBB 1.5.11 is affected by cross-site scripting XSS in the Blog Content component. This vulnerability can allow an attacker to inject the XSS payload in "Blog Content" and each time any user will visit the blog, the XSS triggers and the attacker can able to steal the cookie according to the...
Cross site scripting
FluxBB 1.5.11 is affected by cross-site scripting XSS in the Blog Content component. This vulnerability can allow an attacker to inject the XSS payload in "Blog Content" and each time any user will visit the blog, the XSS triggers and the attacker can able to steal the cookie according to the...
CVE-2020-35241
FlatPress 1.0.3 is affected by cross-site scripting XSS in the Blog Content component. This vulnerability can allow an attacker to inject the XSS payload in Blog content via the admin panel. Each time any user will go to that blog page, the XSS triggers and the attacker can steal the cookie...
CVE-2020-35240
FluxBB 1.5.11 is affected by cross-site scripting XSS in the Blog Content component. This vulnerability can allow an attacker to inject the XSS payload in "Blog Content" and each time any user will visit the blog, the XSS triggers and the attacker can able to steal the cookie according to the...
Flatpress 跨站脚本漏洞
FlatPress is a lightweight, easy to set up blogging engine. A cross-site scripting vulnerability exists in the "Blog Content" component of FlatPress 1.0.3. An attacker can exploit this vulnerability to steal cookies...
Fluxbb 跨站脚本漏洞
FluxBB is an open source forum application. A cross-site scripting vulnerability exists in the "Blog Content" component of FluxBB 1.5.11. An attacker can exploit this vulnerability to steal cookies...
Orchard Core RC1 Cross Site Scripting
Exploit Title: Orchard Core RC1 - Persistent Cross-Site Scripting Google Dork: "Orchardcms" Date: 2020-05-07 Exploit Author: SunCSR Sun Cyber Security Research Vendor Homepage: http://www.orchardcore.net/ Software Link: https://github.com/OrchardCMS/OrchardCore Version: RC1 Tested on: Windows CVE...
Orchard Core RC1 - Persistent Cross-Site Scripting
Exploit Title: Orchard Core RC1 - Persistent Cross-Site Scripting Google Dork: "Orchardcms" Date: 2020-05-07 Exploit Author: SunCSR Sun Cyber Security Research Vendor Homepage: http://www.orchardcore.net/ Software Link: https://github.com/OrchardCMS/OrchardCore Version: RC1 Tested on: Windows CVE...
Dynamic News Magazine&Blog CMS SQL Injection Vulnerability
Dynamic News Magazine&Blog CMS is a content management system mainly used for information websites. A SQL injection vulnerability exists in Dynamic News Magazine&Blog CMS version 1.0. A remote attacker can inject SQL commands by sending the 'id' parameter to the admin/adminprocess.php file...
CVE-2017-15982
Dynamic News Magazine & Blog CMS 1.0 allows SQL Injection via the id parameter to admin/adminprocess.php for form editing...
Moodle 2.2.x < 2.2.7 Multiple Vulnerabilities
Binary data 9412.prm...