CVE-2024-41613

A Cross Site Scripting XSS vulnerability in Symphony CMS 2.7.10 allows remote attackers to inject arbitrary web script or HTML by editing note...

Symphony CMS 安全漏洞

Symphony CMS is a content management system from Symphony CMS open source. A security vulnerability exists in Symphony CMS version 2.7.10, which stems from the presence of a cross-site scripting XSS vulnerability that allows remote attackers to inject arbitrary web script or HTML via editorial...

Symphony CMS 安全漏洞

Symphony CMS is a content management system from Symphony CMS open source. A security vulnerability exists in Symphony CMS version 2.7.10 and earlier, which stems from a cross-site scripting XSS vulnerability in the component Comment...

CVE-2020-15071

content/content.blueprintsevents.php in Symphony CMS 3.0.0 allows XSS via fields'name' to appendSubheading...

Symphony CMS Remote Code Execution Vulnerability

Symphony CMS is a content management system CMS developed in PHP and MySQL. The system supports search engine optimization, module extension and so on. A remote code execution vulnerability exists in the symphony/content/content.blueprintsdatasources.php file in Symphony CMS 2.6.11 and earlier...

Symphony cross-site scripting vulnerability (CNVD-2017-01078)

Symphony CMS is a content management system CMS developed in PHP and MySQL. The system supports search engine optimization, module extension and so on. A cross-site scripting attack vulnerability exists in Symphony CMS, which stems from a failure to properly validate user input. An attacker could...

Symphony CMS Session Fixation Vulnerability

Symphony CMS is a content management system developed in PHP and MySQL. A session fixation vulnerability exists in Symphony CMS when session.useonlycookies is enabled in the program, which can be exploited by a remote attacker to hijack a web session by submitting the PHPSESSID parameter...