9 matches found
EUVD-2018-7475
Malware in sbrugna...
CVE-2018-15603
An issue was discovered in Victor CMS through 2018-05-10. There is XSS via the Author field of the "Leave a Comment" screen...
The microweber application allows large characters to insert in the input field "Leave comment" which can allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request. in microweber/microweber in microweber/microweber
Proof of Concept 1. Go to http://site/admin/view:content/action:posts 2. Create a page and enable to add comment option 3. Go to that page and there will a option called "Leave a comment" 4. Copy the below payload and put it in the "Leave a comment" field post a comment 5. Go to...
Code injection
An issue was discovered in Victor CMS through 2018-05-10. There is XSS via the Author field of the "Leave a Comment" screen...
CVE-2018-15603
An issue was discovered in Victor CMS through 2018-05-10. There is XSS via the Author field of the "Leave a Comment" screen...
CVE-2018-15603
An issue was discovered in Victor CMS through 2018-05-10. There is XSS via the Author field of the "Leave a Comment" screen...
CVE-2018-15603
An issue was discovered in Victor CMS through 2018-05-10. There is XSS via the Author field of the "Leave a Comment" screen...
CVE-2018-15603
Victor CMS (up to 2018-05-10) is affected by a cross-site scripting (XSS) vulnerability in the Author field of the “Leave a Comment” screen. The issue allows injected script via this input. Root cause details are not provided beyond the XSS vector; no patch/version details are enumerated in the s...
Victor CMS Cross-Site Scripting Vulnerability
Victor CMS is a PHP-based content management system CMS. A cross-site scripting vulnerability exists in Victor CMS 2018-05-10 and earlier versions. A remote attacker can exploit the vulnerability to execute JavaScript code with the Author field on the 'Leave a Comment' page...