3 matches found
CVE-2022-45017
A cross-site scripting XSS vulnerability in the Overview Page settings module of WBCE CMS v1.5.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Post Loop field...
CVE-2022-45017
creationtimestamp| type| source ---|---|--- 2022-11-21 18:37:12+00:00| seen| https://t.me/cibsecurity/53241 2025-04-29 14:11:40+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13812...
CVE-2022-45017
WBCE CMS v1.5.4 contains a cross-site scripting (XSS) vulnerability in the Overview Page settings module, exploitable via a crafted payload injected into the Post Loop field. Multiple connected sources confirm the issue and describe it as a lack of proper filtering/escaping of user-supplied data,...