65 matches found
Cross site scripting
SSCMS 7.2.2 was discovered to contain a cross-site scripting XSS vulnerability via the Content Management component...
Cross site scripting
SSCMS 7.2.2 was discovered to contain a stored cross-site scripting XSS vulnerability via the Material Management component...
CVE-2023-43952
SSCMS 7.2.2 was discovered to contain a stored cross-site scripting XSS vulnerability via the Material Management component...
CVE-2023-43953
CVE-2023-43953 : SSCMS 7.2.2 contains a cross-site scripting (XSS) vulnerability in the Content Management component. The CVE entry notes a medium severity (CVSS 3.1: 5.4) with network attack vector, user interaction required, and scope change; no exploitation details are provided in the initial ...
CVE-2023-43953
SSCMS 7.2.2 was discovered to contain a cross-site scripting XSS vulnerability via the Content Management component...
CVE-2023-43953
SSCMS 7.2.2 was discovered to contain a cross-site scripting XSS vulnerability via the Content Management component...
CVE-2023-43952
SSCMS 7.2.2 has a stored XSS vulnerability in the Material Management component. Affected product: SSCMS (SiteServerCMS) version 7.2.2. Impact: stored cross-site scripting; details on root cause are not provided in the documents. No exploitation details are listed. Remediation: update to a versio...
CVE-2023-43951
SSCMS 7.2.2 was discovered to contain a cross-site scripting XSS vulnerability via the Column Management component...
CVE-2023-43951
CVE-2023-43951 affects SSCMS version 7.2.2, with a cross-site scripting (XSS) vulnerability in the Column Management component. The Redhat/EUVD/CNNVD and third-party sources corroborate an XSS flaw in SSCMS 7.2.2 via Column Management. Exploitation details are not provided in the documents; no in...
CVE-2023-43951
SSCMS 7.2.2 was discovered to contain a cross-site scripting XSS vulnerability via the Column Management component...
CVE-2023-43952
SSCMS 7.2.2 was discovered to contain a stored cross-site scripting XSS vulnerability via the Material Management component...
PT-2023-29047 · Sscms · Sscms
Name of the Vulnerable Software and Affected Versions: SSCMS version 7.2.2 Description: A stored cross-site scripting XSS issue was found in the Material Management component. This allows for malicious scripts to be stored and executed on the system. Recommendations: For SSCMS version 7.2.2, upda...
PT-2023-29048 · Sscms · Sscms
Name of the Vulnerable Software and Affected Versions: SSCMS version 7.2.2 Description: A cross-site scripting XSS issue was found in the Content Management component. This type of issue allows attackers to inject malicious scripts into content from otherwise trusted websites. Recommendations: Fo...
PT-2023-29046 · Sscms · Sscms
Name of the Vulnerable Software and Affected Versions: SSCMS version 7.2.2 Description: A cross-site scripting XSS issue was found in the Column Management component. This type of issue allows attackers to inject malicious scripts into content from otherwise trusted websites. Recommendations: For...
Cross-site Scripting (XSS)
SSCMS is vulnerable to Cross-site Scripting XSS. The vulnerability exists because of the improper sanitization in the ajaxDivId argument in the Submit function of ActionsSearchController.Submit.cs, which allows an attacker to inject and execute malicious javascript through the...
CVE-2022-44299
SiteServerCMS 7.1.3 sscms is vulnerable to an Arbitrary File Read due to insufficient validation in ReadTextAsync, enabling leakage of sensitive files. Public reports describe a path/file-read vulnerability that can disclose data without user interaction over network access; exploitation details ...
SSCMS-PluginShell
安装VisualStudio 2. 导入该项目 3. 修改Startup.cs文件中的IPAddress.Parse值 c using Microsoft.Extensions.DependencyInjection; using SSCMS.Advertisement.Abstractions; using SSCMS.Advertisement.Core; using SSCMS.Plugins; using System.Diagnostics; using System; using System.Text; using System.Net.Sockets; using...
Cross site scripting in SSCMS
siteserver SSCMS 6.15.51 is vulnerable to Cross Site Scripting XSS...
GHSA-4QF6-VPJ8-P4R6 Cross site scripting in SSCMS
siteserver SSCMS 6.15.51 is vulnerable to Cross Site Scripting XSS...
CVE-2022-30349
siteserver SSCMS 6.15.51 is vulnerable to Cross Site Scripting XSS...