36 matches found
CVE-2023-36339
An access control issue in WebBoss.io CMS v3.7.0.1 allows attackers to access the Website Backup Tool via a crafted GET request...
Cross site request forgery (csrf)
An access control issue in WebBoss.io CMS v3.7.0.1 allows attackers to access the Website Backup Tool via a crafted GET request...
CVE-2023-37742
WebBoss.io CMS before v3.7.0.1 was discovered to contain a reflected cross-site scripting XSS vulnerability...
CVE-2023-37742
WebBoss.io CMS before v3.7.0.1 was discovered to contain a reflected cross-site scripting XSS vulnerability...
Cross site scripting
WebBoss.io CMS before v3.7.0.1 was discovered to contain a reflected cross-site scripting XSS vulnerability...
CVE-2023-36339
An access control issue in WebBoss.io CMS v3.7.0.1 allows attackers to access the Website Backup Tool via a crafted GET request...
CVE-2023-36339
An access control issue in WebBoss.io CMS v3.7.0.1 allows attackers to access the Website Backup Tool via a crafted GET request...
WebBoss.io 跨站脚本漏洞
WebBoss.io is a website building platform for professional designers and developers from WebBoss.io, Inc. A security vulnerability exists in WebBoss.io CMS versions prior to v3.6.8.1 that stems from the presence of a Reflected Cross-Site Scripting XSS vulnerability...
PT-2023-26087 · Unknown · Webboss.Io Cms
Name of the Vulnerable Software and Affected Versions: WebBoss.io CMS versions prior to 3.7.0.1 Description: A reflected cross-site scripting XSS issue was found in the software. This type of issue occurs when an application takes user input and sends it back to the user without proper validation...
WebBoss.io 安全漏洞
WebBoss.io is a website building platform for professional designers and developers from WebBoss.io. A security vulnerability exists in WebBoss.io CMS version v3.7.0, which stems from an access control issue that allows an attacker to access the website backup tool via a crafted GET request...
CVE-2023-37742
WebBoss.io CMS before v3.7.0.1 was discovered to contain a reflected cross-site scripting XSS vulnerability...
CVE-2023-36339
CVE-2023-36339 affects WebBoss.io CMS v3.7.0.1. The vulnerability is an access control issue that lets attackers reach the Website Backup Tool via a crafted GET request. Exploit status and remediation details are not provided in the connected documents.
CVE-2023-37742
The CVE-2023-37742 entry concerns WebBoss.io CMS, specifically versions prior to 3.7.0.1, which are affected by a reflected cross-site scripting (XSS) vulnerability. The vulnerability stems from unvalidated or improperly escaped user input reflected back in responses, enabling a malicious user to...
CVE-2023-37742
WebBoss.io CMS before v3.7.0.1 was discovered to contain a reflected cross-site scripting XSS vulnerability...
webboss.io Cross Site Scripting vulnerability OBB-3499241
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
webboss.io Cross Site Scripting vulnerability OBB-2761010
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...