Lucene search
K

28 matches found

Cvelist
Cvelist
added 2019/09/21 5:1 p.m.28 views

CVE-2019-16661

Ogma CMS 0.5 has XSS via creation of a new blog...

5.3AI score0.00677EPSS
Exploits1References1
CVE
CVE
added 2019/09/21 5:1 p.m.209 views

CVE-2019-16661

CVE-2019-16661 affects Ogma CMS 0.5 and describes an XSS vulnerability that occurs during the creation of a new blog. The connected documents do not provide specifics on the exact vector, payload, affected components, root cause, or a published remediation. Therefore, the exact nature of the flaw...

5.4CVSS5.2AI score0.00677EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2018/01/03 3:29 p.m.21 views

CVE-2017-1000467

LavaLite version 5.2.4 is vulnerable to stored cross-site scripting vulnerability, within the blog creation page, which can result in disruption of service and execution of javascript code...

5.4CVSS5.3AI score0.00734EPSS
Exploits0References1
Prion
Prion
added 2018/01/03 3:29 p.m.14 views

Cross site scripting

LavaLite version 5.2.4 is vulnerable to stored cross-site scripting vulnerability, within the blog creation page, which can result in disruption of service and execution of javascript code...

3.5CVSS5.4AI score0.00734EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2018/01/03 3:29 p.m.18 views

CVE-2017-1000467

LavaLite version 5.2.4 is vulnerable to stored cross-site scripting vulnerability, within the blog creation page, which can result in disruption of service and execution of javascript code...

5.4CVSS5.6AI score
Exploits0References1
CVE
CVE
added 2018/01/03 3:0 p.m.46 views

CVE-2017-1000467

CVE-2017-1000467 concerns LavaLite 5.2.4 with a stored cross-site scripting vulnerability on the blog creation page, which can lead to disruption of service and execution of JavaScript. The connected documents consistently reference the same issue across multiple sources (Red Hat, GHSA, CNVD, CVE...

5.4CVSS5.2AI score0.00734EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2006/02/01 2:0 a.m.42 views

CVE-2005-4690

CVE-2005-4690 relates to Six Apart Movable Type 3.16, where local users with blog-creation privileges can create or overwrite arbitrary files (e.g., HTML and image files) by selecting an arbitrary directory as the blog’s top-level directory. Note that this issue can be exploited in conjunction wi...

2.1CVSS6.4AI score0.0033EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2005/12/31 5:0 a.m.14 views

CVE-2005-4690

Six Apart Movable Type 3.16 allows local users with blog-creation privileges to create or overwrite arbitrary files of certain types such as HTML and image files by selecting an arbitrary directory as a blog's top-level directory. NOTE: this issue can be used in conjunction with CVE-2005-3102 to...

2.1CVSS6.2AI score0.0033EPSS
Exploits0References3
Rows per page
Query Builder