28 matches found
CVE-2019-16661
Ogma CMS 0.5 has XSS via creation of a new blog...
CVE-2019-16661
CVE-2019-16661 affects Ogma CMS 0.5 and describes an XSS vulnerability that occurs during the creation of a new blog. The connected documents do not provide specifics on the exact vector, payload, affected components, root cause, or a published remediation. Therefore, the exact nature of the flaw...
CVE-2017-1000467
LavaLite version 5.2.4 is vulnerable to stored cross-site scripting vulnerability, within the blog creation page, which can result in disruption of service and execution of javascript code...
Cross site scripting
LavaLite version 5.2.4 is vulnerable to stored cross-site scripting vulnerability, within the blog creation page, which can result in disruption of service and execution of javascript code...
CVE-2017-1000467
LavaLite version 5.2.4 is vulnerable to stored cross-site scripting vulnerability, within the blog creation page, which can result in disruption of service and execution of javascript code...
CVE-2017-1000467
CVE-2017-1000467 concerns LavaLite 5.2.4 with a stored cross-site scripting vulnerability on the blog creation page, which can lead to disruption of service and execution of JavaScript. The connected documents consistently reference the same issue across multiple sources (Red Hat, GHSA, CNVD, CVE...
CVE-2005-4690
CVE-2005-4690 relates to Six Apart Movable Type 3.16, where local users with blog-creation privileges can create or overwrite arbitrary files (e.g., HTML and image files) by selecting an arbitrary directory as the blog’s top-level directory. Note that this issue can be exploited in conjunction wi...
CVE-2005-4690
Six Apart Movable Type 3.16 allows local users with blog-creation privileges to create or overwrite arbitrary files of certain types such as HTML and image files by selecting an arbitrary directory as a blog's top-level directory. NOTE: this issue can be used in conjunction with CVE-2005-3102 to...