Lucene search
K

36 matches found

ATTACKERKB
ATTACKERKB
added 2023/07/21 8:15 p.m.4 views

CVE-2023-36339

An access control issue in WebBoss.io CMS v3.7.0.1 allows attackers to access the Website Backup Tool via a crafted GET request...

7.5CVSS7.2AI score0.00487EPSS
Exploits0References3
Prion
Prion
added 2023/07/21 8:15 p.m.15 views

Cross site request forgery (csrf)

An access control issue in WebBoss.io CMS v3.7.0.1 allows attackers to access the Website Backup Tool via a crafted GET request...

5CVSS7.4AI score0.00487EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/07/21 4:15 p.m.2 views

CVE-2023-37742

WebBoss.io CMS before v3.7.0.1 was discovered to contain a reflected cross-site scripting XSS vulnerability...

6.1CVSS5.7AI score0.004EPSS
Exploits0References3
NVD
NVD
added 2023/07/21 4:15 p.m.25 views

CVE-2023-37742

WebBoss.io CMS before v3.7.0.1 was discovered to contain a reflected cross-site scripting XSS vulnerability...

6.1CVSS6.1AI score0.004EPSS
Exploits0References3
Prion
Prion
added 2023/07/21 4:15 p.m.20 views

Cross site scripting

WebBoss.io CMS before v3.7.0.1 was discovered to contain a reflected cross-site scripting XSS vulnerability...

5.8CVSS6AI score0.004EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/21 12:0 a.m.11 views

CVE-2023-36339

An access control issue in WebBoss.io CMS v3.7.0.1 allows attackers to access the Website Backup Tool via a crafted GET request...

6.8AI score0.00487EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/07/21 12:0 a.m.35 views

CVE-2023-36339

An access control issue in WebBoss.io CMS v3.7.0.1 allows attackers to access the Website Backup Tool via a crafted GET request...

7.6AI score0.00487EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/07/21 12:0 a.m.5 views

WebBoss.io 跨站脚本漏洞

WebBoss.io is a website building platform for professional designers and developers from WebBoss.io, Inc. A security vulnerability exists in WebBoss.io CMS versions prior to v3.6.8.1 that stems from the presence of a Reflected Cross-Site Scripting XSS vulnerability...

6.1CVSS6.2AI score0.004EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/07/21 12:0 a.m.3 views

PT-2023-26087 · Unknown · Webboss.Io Cms

Name of the Vulnerable Software and Affected Versions: WebBoss.io CMS versions prior to 3.7.0.1 Description: A reflected cross-site scripting XSS issue was found in the software. This type of issue occurs when an application takes user input and sends it back to the user without proper validation...

6.1CVSS5.9AI score0.004EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/07/21 12:0 a.m.4 views

WebBoss.io 安全漏洞

WebBoss.io is a website building platform for professional designers and developers from WebBoss.io. A security vulnerability exists in WebBoss.io CMS version v3.7.0, which stems from an access control issue that allows an attacker to access the website backup tool via a crafted GET request...

7.5CVSS7.3AI score0.00487EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/07/21 12:0 a.m.25 views

CVE-2023-37742

WebBoss.io CMS before v3.7.0.1 was discovered to contain a reflected cross-site scripting XSS vulnerability...

6.2AI score0.004EPSS
Exploits0References3
CVE
CVE
added 2023/07/21 12:0 a.m.44 views

CVE-2023-36339

CVE-2023-36339 affects WebBoss.io CMS v3.7.0.1. The vulnerability is an access control issue that lets attackers reach the Website Backup Tool via a crafted GET request. Exploit status and remediation details are not provided in the connected documents.

7.5CVSS7.3AI score0.00487EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2023/07/21 12:0 a.m.38 views

CVE-2023-37742

The CVE-2023-37742 entry concerns WebBoss.io CMS, specifically versions prior to 3.7.0.1, which are affected by a reflected cross-site scripting (XSS) vulnerability. The vulnerability stems from unvalidated or improperly escaped user input reflected back in responses, enabling a malicious user to...

6.1CVSS6AI score0.004EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/21 12:0 a.m.12 views

CVE-2023-37742

WebBoss.io CMS before v3.7.0.1 was discovered to contain a reflected cross-site scripting XSS vulnerability...

6.3AI score0.004EPSS
Exploits0References3
Openbugbounty
Openbugbounty
added 2023/07/10 12:57 p.m.17 views

webboss.io Cross Site Scripting vulnerability OBB-3499241

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/07/11 9:48 p.m.13 views

webboss.io Cross Site Scripting vulnerability OBB-2761010

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Rows per page
Query Builder