392 matches found
Cross site scripting
Cross Site Scripting XSS vulnerability exists in PbootCMS v1.3.7 via the title parameter in the mod function in SingleController.php...
CVE-2020-18456
CVE-2020-18456 affects PbootCMS v1.3.7, with a Cross Site Scripting (XSS) flaw exploitable via the title parameter in the mod function of SingleController.php. The root cause is improper handling of input in that function, allowing script injection that can affect users viewing crafted pages. Doc...
CVE-2020-18456
Cross Site Scripting XSS vulnerability exists in PbootCMS v1.3.7 via the title parameter in the mod function in SingleController.php...
PbootCMS 跨站脚本漏洞
PbootCMS is PbootCMS individual developers of an open source enterprise site building content management system CMS using PHP language development. PbootCMS v1.3.7 suffers from a cross-site scripting vulnerability that originates from the title parameter in the SingleController.php mod function...
PbootCMS Access Control Error Vulnerability
PbootCMS is an open source enterprise website content management system CMS developed using the PHP language.The message board of PbootCMS 2.0.6 is vulnerable to an access control error. An attacker can exploit the access control error vulnerability by executing the list parameter in the update...
PbootCMS Remote Code Execution Vulnerability
PbootCMS is an open source enterprise building content management system CMS developed using the PHP language. PbootCMS has a security vulnerability, the vulnerability stems from the platform's message board function does not validate the data, an attacker can exploit the vulnerability to execute...
CVE-2020-22535
Incorrect Access Control vulnerability in PbootCMS 2.0.6 via the list parameter in the update function in upgradecontroller.php...
CVE-2020-22535
Incorrect Access Control vulnerability in PbootCMS 2.0.6 via the list parameter in the update function in upgradecontroller.php...
Improper access control
Incorrect Access Control vulnerability in PbootCMS 2.0.6 via the list parameter in the update function in upgradecontroller.php...
CVE-2020-22535
Incorrect Access Control vulnerability in PbootCMS 2.0.6 via the list parameter in the update function in upgradecontroller.php...
CVE-2020-22535
The CVE-2020-22535 entry affects PbootCMS 2.0.6 . The vulnerability is an Incorrect Access Control issue triggered by the list parameter in update function (upgradecontroller.php) . Multiple connected records corroborate the same description across CVE catalogs (NVD, Red Hat, CNVD, CVE List, CNNV...
PbootCMS Cross-Site Scripting Vulnerability
PbootCMS is an open source enterprise building content management system CMS using PHP language developed by PbootCMS individual developers. PbootCMS suffers from a cross-site scripting vulnerability that stems from the product's admin.php page not properly validating client-side data. An attacke...
PbootCMS 访问控制错误漏洞
PbootCMS is an open source enterprise website content management system CMS developed using the PHP language.The message board of PbootCMS 2.0.6 is vulnerable to an access control error. An attacker can exploit the access control error vulnerability by executing the list parameter in the update...
CVE-2020-23580
Remote Code Execution vulnerability in PbootCMS 2.0.8 in the message board...
CVE-2020-23580
Remote Code Execution vulnerability in PbootCMS 2.0.8 in the message board...
Remote code execution
Remote Code Execution vulnerability in PbootCMS 2.0.8 in the message board...
CVE-2020-23580
Remote Code Execution vulnerability in PbootCMS 2.0.8 in the message board...
CVE-2020-23580
CVE-2020-23580 concerns a Remote Code Execution in PbootCMS 2.0.8, specifically via the message board function. The root cause described across connected sources is that the message board does not validate data, enabling an attacker to execute arbitrary code remotely. The vulnerability is treated...
CVE-2020-20363
Crossi Site Scripting XSS vulnerability in PbootCMS 2.0.3 in admin.php...
CVE-2020-20363
Crossi Site Scripting XSS vulnerability in PbootCMS 2.0.3 in admin.php...