CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

282 matches found

Vulnrichment•added 2024/04/26 12:0 a.m.•14 views

CVE-2024-31741

Cross Site Scripting vulnerability in MiniCMS v.1.11 allows a remote attacker to run arbitrary code via crafted string in the URL after login...

6.9AI score0.00373EPSS

Exploits1References1

Positive Technologies•added 2024/04/26 12:0 a.m.•3 views

PT-2024-24193 · Minicms · Minicms

Name of the Vulnerable Software and Affected Versions: MiniCMS version 1.11 Description: A Cross Site Scripting issue allows a remote attacker to run arbitrary code via a crafted string in the URL after login. Recommendations: For MiniCMS version 1.11, update to a version that includes a fix for...

6.1CVSS7AI score0.00373EPSS

Exploits1References7

CNVD•added 2023/11/02 12:0 a.m.•16 views

MiniCMS Cross-Site Scripting Vulnerability (CNVD-2023-86328)

MiniCMS is the minimalist content management system for personal websites. A cross-site scripting vulnerability exists in MiniCMS version 1.11, which stems from the application's lack of effective filtering and escaping of user-supplied data, and can be exploited by an attacker to run arbitrary...

5.4CVSS6.5AI score0.00387EPSS

Exploits1References1

ATTACKERKB•added 2023/10/31 11:15 p.m.•2 views

CVE-2023-46378

Stored Cross Site Scripting XSS vulnerability in MiniCMS 1.1.1 allows attackers to run arbitrary code via crafted string appended to /mc-admin/conf.php...

5.4CVSS6AI score0.00387EPSS

Exploits1References2

NVD•added 2023/10/31 11:15 p.m.•14 views

CVE-2023-46378

Stored Cross Site Scripting XSS vulnerability in MiniCMS 1.1.1 allows attackers to run arbitrary code via crafted string appended to /mc-admin/conf.php...

5.4CVSS5.3AI score0.00387EPSS

Exploits1References1

OSV•added 2023/10/31 11:15 p.m.•18 views

CVE-2023-46378

Stored Cross Site Scripting XSS vulnerability in MiniCMS 1.1.1 allows attackers to run arbitrary code via crafted string appended to /mc-admin/conf.php...

5.4CVSS6.2AI score

Exploits0References1

Prion•added 2023/10/31 11:15 p.m.•16 views

Cross site scripting

Stored Cross Site Scripting XSS vulnerability in MiniCMS 1.1.1 allows attackers to run arbitrary code via crafted string appended to /mc-admin/conf.php...

4.9CVSS5.4AI score0.00387EPSS

Exploits1References1Affected Software1

CVE•added 2023/10/31 12:0 a.m.•64 views

CVE-2023-46378

The CVE-2023-46378 entry refers to a Stored Cross-Site Scripting (XSS) vulnerability in MiniCMS 1.1.1 where a crafted string appended to /mc-admin/conf.php can cause arbitrary code execution. The issue is repeatedly described across multiple databases (NVD, CNVD, CNNVD, OSV, CVE List) as an XSS f...

5.4CVSS5.3AI score0.00387EPSS

Exploits1References1Affected Software1

Cvelist•added 2023/10/31 12:0 a.m.•21 views

CVE-2023-46378

Stored Cross Site Scripting XSS vulnerability in MiniCMS 1.1.1 allows attackers to run arbitrary code via crafted string appended to /mc-admin/conf.php...

5.5AI score0.00387EPSS

Exploits1References1

CNNVD•added 2023/10/31 12:0 a.m.•3 views

MiniCMS 跨站脚本漏洞

5.4CVSS6.6AI score0.00387EPSS

Exploits1References2

Positive Technologies•added 2023/10/31 12:0 a.m.•3 views

PT-2023-29987 · Minicms · Minicms

Name of the Vulnerable Software and Affected Versions: MiniCMS version 1.1.1 Description: The issue allows attackers to run arbitrary code via a crafted string appended to the "/mc-admin/conf.php" API endpoint. This is a Stored Cross Site Scripting XSS issue, which means that an attacker can inje...

5.4CVSS5.5AI score0.00387EPSS

Exploits1References5

NVD•added 2023/02/24 4:15 p.m.•16 views

CVE-2021-33387

Cross Site Scripting Vulnerability in MiniCMS v.1.10 allows attacker to execute arbitrary code via a crafted get request...

9.6CVSS9AI score0.00838EPSS

Exploits1References1

OSV•added 2023/02/24 4:15 p.m.•15 views

CVE-2021-33387

Cross Site Scripting Vulnerability in MiniCMS v.1.10 allows attacker to execute arbitrary code via a crafted get request...

9.6CVSS9AI score

Exploits0References1

Prion•added 2023/02/24 4:15 p.m.•13 views

Cross site scripting

Cross Site Scripting Vulnerability in MiniCMS v.1.10 allows attacker to execute arbitrary code via a crafted get request...

6.8CVSS8.9AI score0.00838EPSS

Exploits1References1Affected Software1

CVE•added 2023/02/24 12:0 a.m.•60 views

CVE-2021-33387

CVE-2021-33387 is a Cross Site Scripting vulnerability in MiniCMS v1.10 that allows an attacker to execute arbitrary code through a crafted GET request. Related sources (NVD/NIST, Red Hat, OSV, CVE listings) consistently describe MiniCMS-1.10 as vulnerable to XSS with high impact (confidentiality...

9.6CVSS9AI score0.00838EPSS

Exploits1References1Affected Software1

Cvelist•added 2023/02/24 12:0 a.m.•20 views

CVE-2021-33387

Cross Site Scripting Vulnerability in MiniCMS v.1.10 allows attacker to execute arbitrary code via a crafted get request...

9.2AI score0.00838EPSS

Exploits1References1

Vulnrichment•added 2023/02/24 12:0 a.m.•7 views

CVE-2021-33387

Cross Site Scripting Vulnerability in MiniCMS v.1.10 allows attacker to execute arbitrary code via a crafted get request...

9AI score0.00838EPSS

Exploits1References1

CNNVD•added 2023/02/24 12:0 a.m.•3 views

MiniCMS 跨站脚本漏洞

MiniCMS is the minimalist content management system for personal websites. A security vulnerability exists in MiniCMS version v.1.10 that originates from allowing an unauthenticated attacker to execute arbitrary code via a crafted get request...

9.6CVSS8.9AI score0.00838EPSS

Exploits1References2

NVD•added 2022/06/28 10:15 p.m.•14 views

CVE-2020-19896

File inclusion vulnerability in Minicms v1.9 allows remote attackers to execute arbitary PHP code via post-edit.php...

9.8CVSS0.01311EPSS

Exploits1References1

OSV•added 2022/06/28 10:15 p.m.•20 views

CVE-2020-19896

File inclusion vulnerability in Minicms v1.9 allows remote attackers to execute arbitary PHP code via post-edit.php...

9.8CVSS7.5AI score

Exploits0References1