Lucene search
+L

48 matches found

Prion
Prion
added 2020/12/02 5:15 p.m.18 views

Cross site scripting

Lepton-CMS 4.7.0 is affected by cross-site scripting XSS. An attacker can inject the XSS payload in the URL field of the admin page and each time an admin visits the Menu-Pages-Pages Overview section, the XSS will be triggered...

3.5CVSS4.7AI score0.01673EPSS
Exploits2References2Affected Software1
CVE
CVE
added 2020/12/02 4:45 p.m.69 views

CVE-2020-29240

CVE-2020-29240 concerns Lepton-CMS 4.7.0, where a cross-site scripting (XSS) vulnerability exists in the admin UI. The vulnerability allows an attacker to inject an XSS payload via the URL field accessed from the Menu-Pages-Pages Overview section; every time an admin visits that page, the payload...

4.8CVSS4.8AI score0.01673EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2020/12/02 4:45 p.m.25 views

CVE-2020-29240

Lepton-CMS 4.7.0 is affected by cross-site scripting XSS. An attacker can inject the XSS payload in the URL field of the admin page and each time an admin visits the Menu-Pages-Pages Overview section, the XSS will be triggered...

4.8AI score0.01673EPSS
Exploits2References2
CNNVD
CNNVD
added 2020/12/02 12:0 a.m.8 views

Lepton-CMS Cross-Site Scripting Vulnerability

LeptonCMS is a content management system CMS for the Lepton project. Lepton-CMS 4.7.0 suffers from a cross-site scripting vulnerability that can be exploited by an attacker to inject an XSS payload into the URL field of an administrative page, which is triggered whenever an administrator accesses...

4.8CVSS5.6AI score0.01673EPSS
Exploits2References3
CNVD
CNVD
added 2020/05/08 12:0 a.m.4 views

LeptonCMS Cross-Site Scripting Vulnerability (CNVD-2020-35505)

LeptonCMS is a content management system CMS for the Lepton Project. A cross-site scripting vulnerability exists in the modules/wysiwyg/save.php file in LeptonCMS version 4.5.0. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker can...

6.1CVSS6.4AI score0.01225EPSS
Exploits1References1
exploitpack
exploitpack
added 2016/11/21 12:0 a.m.36 views

LEPTON 2.2.2 - SQL Injection

LEPTON 2.2.2 - SQL Injection Security Advisory - Curesec Research Team 1. Introduction Affected Product: LEPTON 2.2.2 stable Fixed in: 2.3.0 Fixed Version Link: http://www.lepton-cms.org/posts/ important-lepton-2.3.0-101.php Vendor Website: http://www.lepton-cms.org/ Vulnerability Type: SQL...

8.6AI score
Exploits0
Exploit DB
Exploit DB
added 2016/11/21 12:0 a.m.58 views

LEPTON 2.2.2 - SQL Injection

Security Advisory - Curesec Research Team 1. Introduction Affected Product: LEPTON 2.2.2 stable Fixed in: 2.3.0 Fixed Version Link: http://www.lepton-cms.org/posts/ important-lepton-2.3.0-101.php Vendor Website: http://www.lepton-cms.org/ Vulnerability Type: SQL Injection Remote Exploitable: Yes...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2016/11/21 12:0 a.m.65 views

LEPTON 2.2.2 - Remote Code Execution

Security Advisory - Curesec Research Team 1. Introduction Affected Product: LEPTON 2.2.2 stable Fixed in: 2.3.0 Fixed Version Link: http://www.lepton-cms.org/posts/important-lepton-2.3.0-101.php Vendor Website: http://www.lepton-cms.org/ Vulnerability Type: Code Execution Remote Exploitable: Yes...

7.4AI score
Exploits0
0day.today
0day.today
added 2016/11/19 12:0 a.m.25 views

Lepton 2.2.2 Stable CSRF / Open Redirect / Password Handling Vulnerabilities

Lepton version 2.2.2 Stable suffers from password handling, insecure bruteforce protection, cross site request forgery, and open redirection vulnerabilities. 1. Introduction Affected Product: LEPTON 2.2.2 stable Fixed in: 2.3.0 Fixed Version http://www.lepton-cms.org/posts/ Link:...

7.2AI score
Exploits0
0day.today
0day.today
added 2016/11/19 12:0 a.m.26 views

Lepton 2.2.2 Stable SQL Injection Vulnerability

Lepton version 2.2.2 Stable suffers from remote SQL injection vulnerabilities. 1. Introduction Affected Product: LEPTON 2.2.2 stable Fixed in: 2.3.0 Fixed Version Link: http://www.lepton-cms.org/posts/ important-lepton-2.3.0-101.php Vendor Website: http://www.lepton-cms.org/ Vulnerability Type: S...

8.2AI score
Exploits0
0day.today
0day.today
added 2016/11/19 12:0 a.m.39 views

Lepton 2.2.2 Stable Shell Upload Vulnerability

Lepton version 2.2.2 Stable suffers from a remote code execution vulnerability via a remote shell upload. 1. Introduction Affected Product: LEPTON 2.2.2 stable Fixed in: 2.3.0 Fixed Version Link: http://www.lepton-cms.org/posts/ important-lepton-2.3.0-101.php Vendor Website:...

7.9AI score
Exploits0
Packet Storm
Packet Storm
added 2016/11/18 12:0 a.m.44 views

Lepton 2.2.2 Stable SQL Injection

Security Advisory - Curesec Research Team 1. Introduction Affected Product: LEPTON 2.2.2 stable Fixed in: 2.3.0 Fixed Version Link: http://www.lepton-cms.org/posts/ important-lepton-2.3.0-101.php Vendor Website: http://www.lepton-cms.org/ Vulnerability Type: SQL Injection Remote Exploitable: Yes...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2016/11/18 12:0 a.m.48 views

Lepton 2.2.2 Stable CSRF / Open Redirect / Password Handling

Security Advisory - Curesec Research Team 1. Introduction Affected Product: LEPTON 2.2.2 stable Fixed in: 2.3.0 Fixed Version http://www.lepton-cms.org/posts/ Link: important-lepton-2.3.0-101.php Vendor Website: http://www.lepton-cms.org/ Vulnerability CSRF, Open Redirect, Insecure Bruteforce...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2016/08/16 12:0 a.m.31 views

Lepton CMS 2.2.0 / 2.2.1 Directory Traversal

Credits: John Page HYP3RLINX + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/LEPTON-ARCHIVE-DIRECTORY-TRAVERSAL.txt + ISR: ApparitionSec Vendor: ================== www.lepton-cms.org Product: ================================= Lepton CMS 2.2.0 / 2.2.1...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2016/08/16 12:0 a.m.26 views

Lepton CMS 2.2.02.2.1 - Directory Traversal

Lepton CMS 2.2.02.2.1 - Directory Traversal + Credits: John Page HYP3RLINX + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/LEPTON-ARCHIVE-DIRECTORY-TRAVERSAL.txt + ISR: ApparitionSec Vendor: ================== www.lepton-cms.org Product:...

7.4AI score
Exploits0
0day.today
0day.today
added 2016/08/16 12:0 a.m.29 views

Lepton CMS 2.2.0 / 2.2.1 - PHP Code Injection

Exploit for php platform in category web applications + Credits: John Page HYP3RLINX Vendor: ================== www.lepton-cms.org Product: ================================= Lepton CMS 2.2.0 / 2.2.1 update LEPTON is an easy-to-use but full customizable Content Management System CMS. Vulnerability...

7.1AI score
Exploits0
0day.today
0day.today
added 2016/08/16 12:0 a.m.42 views

Lepton CMS 2.2.0 / 2.2.1 - Directory Traversal

Exploit for php platform in category web applications + Credits: John Page HYP3RLINX Vendor: ================== www.lepton-cms.org Product: ================================= Lepton CMS 2.2.0 / 2.2.1 update LEPTON is an easy-to-use but full customizable Content Management System CMS. Vulnerability...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2016/08/16 12:0 a.m.36 views

Lepton CMS 2.2.0 / 2.2.1 PHP Code Injection

Credits: John Page HYP3RLINX + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/LEPTON-PHP-CODE-INJECTION.txt + ISR: ApparitionSec Vendor: ================== www.lepton-cms.org Product: ================================= Lepton CMS 2.2.0 / 2.2.1 update LEPTON...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2016/08/16 12:0 a.m.19 views

Lepton CMS 2.2.02.2.1 - PHP Code Injection

Lepton CMS 2.2.02.2.1 - PHP Code Injection + Credits: John Page HYP3RLINX + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/LEPTON-PHP-CODE-INJECTION.txt + ISR: ApparitionSec Vendor: ================== www.lepton-cms.org Product:...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2016/08/16 12:0 a.m.30 views

Lepton CMS 2.2.0/2.2.1 - Directory Traversal

Credits: John Page HYP3RLINX + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/LEPTON-ARCHIVE-DIRECTORY-TRAVERSAL.txt + ISR: ApparitionSec Vendor: ================== www.lepton-cms.org Product: ================================= Lepton CMS 2.2.0 / 2.2.1...

7.4AI score
Exploits0
Rows per page
Query Builder