3 matches found
Mara CMS 7.5 - Reflective Cross-Site Scripting
Exploit Title: Mara CMS 7.5 - Reflective Cross-Site Scripting Google Dork: NA Date: 2020-08-01 Exploit Author: George Tsimpidas Vendor Homepage: https://sourceforge.net/projects/maracms/ Software Link: https://sourceforge.net/projects/maracms/files/MaraCMS75.zip/download Version: 7.5 Tested on:...
CVE-2020-24223
Mara CMS 7.5 allows cross-site scripting XSS in contact.php via the theme or pagetheme parameters...
CVE-2020-24223
Mara CMS 7.5 is affected by a reflected XSS in contact.php via the theme or pagetheme parameters (root cause: improper sanitization of these inputs). The Nuclei template and multiple sources describe exploitation resulting in arbitrary JavaScript execution in the victim’s browser, with potential ...