Lucene search
K

12 matches found

Vulnrichment
Vulnrichment
added 2026/03/16 11:53 a.m.2 views

CVE-2025-69237 Stored XSS in Raytha CMS

Raytha CMS is vulnerable to Stored XSS via FieldValues0.Value parameter in page creation functionality. Authenticated attacker with permissions to create content can inject arbitrary HTML and JS into website, which will be rendered/executed when visiting edited page. This issue was fixed in versi...

5.1CVSS5.8AI score0.00182EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/16 11:53 a.m.8 views

CVE-2025-69237

Raytha CMS is vulnerable to Stored XSS via FieldValues0.Value parameter in page creation functionality. Authenticated attacker with permissions to create content can inject arbitrary HTML and JS into website, which will be rendered/executed when visiting edited page. This issue was fixed in versi...

5.1CVSS5.8AI score0.00217EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/30 12:0 a.m.3 views

PT-2025-53881

Name of the Vulnerable Software and Affected Versions xenioushk BWL Knowledge Base Manager versions through 1.6.3 Description The software contains a flaw related to improper input handling during web page creation, which allows for Stored Cross-site Scripting XSS. This means that malicious scrip...

6.5CVSS5.9AI score0.00156EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/17 12:0 a.m.6 views

PT-2025-51857

A Cross-Site Request Forgery CSRF in the page creation/editing function of RiteCMS v3.1.0 allows attackers to arbitrarily create pages via a crafted POST request...

6.8CVSS6.8AI score0.00159EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/10/24 2:33 p.m.7 views

CVE-2025-61413

A stored cross-site scripting XSS vulnerability in the /manager/pages component of Piranha CMS v12.0 allows attackers to execute arbitrary web scripts or HTML via creating a page and injecting a crafted payload into the Markdown blocks...

6.1CVSS5.7AI score0.00263EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-1592

Malware in sbrugna...

5.4CVSS5.5AI score0.00758EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 3:37 a.m.6 views

CVE-2017-1000465

Sulu-standard version 1.6.6 is vulnerable to stored cross-site scripting vulnerability, within the page creation page, which can result in disruption of service and execution of javascript code...

5.4CVSS6.1AI score0.00758EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2024/09/19 2:12 p.m.82 views

Exploit for Cross-Site Request Forgery (CSRF) in Creativeitem Academy_Lms

CVE-2022-47131 Academy LMS = 5.10 CSRF / XSS Descriptio...

4.8CVSS6.3AI score0.00408EPSS
Exploits2
ATTACKERKB
ATTACKERKB
added 2023/12/07 7:15 a.m.3 views

CVE-2023-48824

BoidCMS 2.0.1 is vulnerable to Multiple Stored Cross-Site Scripting XSS issues via the title, subtitle, footer, or keywords parameter in a page=create action...

5.4CVSS6AI score0.00464EPSS
Exploits2References2
OSV
OSV
added 2023/09/04 12:15 p.m.3 views

CVE-2023-4059

The Profile Builder WordPress plugin before 3.9.8 lacks authorisation and CSRF in its page creation function which allows unauthenticated users to create the register, log-in and edit-profile pages from the plugin on the blog...

4.3CVSS7.3AI score0.002EPSS
Exploits1References1
Snyk
Snyk
added 2022/05/17 12:30 a.m.2 views

Cross-site Scripting (XSS)

Overview UmbracoCms.Core is an ASP.NET CMS. Affected versions of this package are vulnerable to Cross-site Scripting XSS due to improper user input sanitization. Exploiting this vulnerability is possible via the PageName aka nodename parameter during the creation of a new page. Details Cross-site...

5.4CVSS5.3AI score0.00845EPSS
Exploits0References2
CNVD
CNVD
added 2020/11/03 12:0 a.m.2 views

GetSimple CMS Cross-Site Scripting Vulnerability (CNVD-2020-63995)

GetSimple CMS is a content management system CMS written in PHP. A security vulnerability exists in GetSimple CMS version 3.3.16, which originates from allowing persistent cross-site scripting execution of "permalinks" on parameter setting pages when you create and open a new page. No details of...

5.4CVSS6.4AI score0.00881EPSS
Exploits1References1
Rows per page
Query Builder