Lucene search
K

151 matches found

Cvelist
Cvelist
added 2023/01/26 12:0 a.m.25 views

CVE-2022-44297

SiteServer CMS 7.1.3 has a SQL injection vulnerability the background...

10AI score0.00972EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/01/26 12:0 a.m.8 views

CVE-2022-44297

SiteServer CMS 7.1.3 has a SQL injection vulnerability the background...

9.8AI score0.00972EPSS
Exploits1References1
OSV
OSV
added 2023/01/26 12:0 a.m.15 views

CVE-2022-44297

SiteServer CMS 7.1.3 has a SQL injection vulnerability the background...

9.8CVSS9.8AI score0.00972EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/06/02 2:15 p.m.2 views

CVE-2022-30349

siteserver SSCMS 6.15.51 is vulnerable to Cross Site Scripting XSS...

6.1CVSS6.4AI score0.00642EPSS
Exploits1References2
NVD
NVD
added 2022/06/02 2:15 p.m.28 views

CVE-2022-30349

siteserver SSCMS 6.15.51 is vulnerable to Cross Site Scripting XSS...

6.1CVSS0.00642EPSS
Exploits1References1
OSV
OSV
added 2022/05/27 5:20 p.m.11 views

CVE-2022-30349

siteserver SSCMS 6.15.51 is vulnerable to Cross Site Scripting XSS...

6.1CVSS6.1AI score0.00642EPSS
Exploits1References3
CVE
CVE
added 2022/05/27 5:20 p.m.78 views

CVE-2022-30349

CVE-2022-30349 affects SiteServer SSCMS 6.15.51. A cross-site scripting (XSS) vulnerability arises from insufficient sanitization of user-supplied data in the modalRelatedFieldItemEdit.aspx script (per CNNVD report). Several connected records (Red Hat, GitHub advisories, OSV, CVE listings, and Ne...

6.1CVSS6AI score0.00642EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2022/05/25 12:0 a.m.13 views

GHSA-2XWP-7J3P-C78X Cross site scripting in SiteServer CMS

SiteServer CMS V6.15.51 is affected by a Cross Site Scripting XSS vulnerability...

5.4CVSS5.5AI score0.00666EPSS
Exploits1References3
OSV
OSV
added 2022/05/25 12:0 a.m.26 views

GHSA-5XR5-V2H7-2W7W SQL injection in SiteServer CMS

SiteServer CMS V6.15.51 is affected by a SQL injection vulnerability...

8.8CVSS9AI score0.01145EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2022/05/25 12:0 a.m.19 views

SQL injection in SiteServer CMS

SiteServer CMS V6.15.51 is affected by a SQL injection vulnerability...

8.8CVSS2.7AI score0.01145EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2022/05/25 12:0 a.m.27 views

Cross site scripting in SiteServer CMS

SiteServer CMS V6.15.51 is affected by a Cross Site Scripting XSS vulnerability...

5.4CVSS1.5AI score0.00666EPSS
Exploits1References3Affected Software1
CNVD
CNVD
added 2022/05/25 12:0 a.m.19 views

SiteServer CMS sql injection vulnerability

SiteServer CMS is a content management system CMS from Beijing Bailong Thousand Domain Software Technology Development Company. SQL injection vulnerability exists in SiteServer CMS V6.15.51. An attacker can exploit this vulnerability to perform sql injection...

6.5CVSS2.5AI score0.01145EPSS
Exploits1Affected Software1
OSV
OSV
added 2022/05/24 4:44 p.m.39 views

GHSA-FF4W-8CHR-W2X9 SiteServer CMS RCE via unsafe file upload

A issue was discovered in SiteServer CMS prior to version 6.12. It allows remote attackers to execute arbitrary code because an administrator can add the permitted file extension .aassp, which is converted to .asp because the "as" substring is deleted...

7.2CVSS7.3AI score0.02872EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2022/05/24 4:44 p.m.19 views

SiteServer CMS RCE via unsafe file upload

A issue was discovered in SiteServer CMS prior to version 6.12. It allows remote attackers to execute arbitrary code because an administrator can add the permitted file extension .aassp, which is converted to .asp because the "as" substring is deleted...

7.2CVSS7.6AI score0.02872EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2022/05/24 1:15 p.m.21 views

CVE-2021-42654

SiteServer CMS V5.1 is affected by an unrestricted upload of a file with dangerous type getshell, which could be used to execute arbitrary code...

9.8CVSS0.01617EPSS
Exploits0References3
NVD
NVD
added 2022/05/24 1:15 p.m.17 views

CVE-2021-42655

SiteServer CMS V6.15.51 is affected by a SQL injection vulnerability...

8.8CVSS0.01145EPSS
Exploits1References3
NVD
NVD
added 2022/05/24 1:15 p.m.21 views

CVE-2021-42656

SiteServer CMS V6.15.51 is affected by a Cross Site Scripting XSS vulnerability...

5.4CVSS0.00666EPSS
Exploits1References3
OSV
OSV
added 2022/05/24 1:15 p.m.17 views

CVE-2021-42655

SiteServer CMS V6.15.51 is affected by a SQL injection vulnerability...

8.8CVSS7.8AI score
Exploits0References3
OSV
OSV
added 2022/05/24 1:15 p.m.14 views

CVE-2021-42656

SiteServer CMS V6.15.51 is affected by a Cross Site Scripting XSS vulnerability...

5.4CVSS6AI score
Exploits0References3
OSV
OSV
added 2022/05/24 1:15 p.m.6 views

CVE-2021-42654

SiteServer CMS V5.1 is affected by an unrestricted upload of a file with dangerous type getshell, which could be used to execute arbitrary code...

9.8CVSS6AI score0.01617EPSS
Exploits0References3
Rows per page
Query Builder