CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Github Security Blog•added 2022/05/13 1:24 a.m.•17 views

October CMS - RainLab Blog Plugin XSS

The RainLab Blog Plugin used in October CMS through 1.0.431 allows XSS by entering HTML on the Add Posts page...

6.1CVSS6.2AI score0.01085EPSS

Exploits3References5Affected Software1

OSV•added 2018/02/18 3:29 a.m.•13 views

CVE-2018-7198

October CMS through 1.0.431 allows XSS by entering HTML on the Add Posts page...

6.1CVSS6AI score

Exploits0References2

Prion•added 2018/02/18 3:29 a.m.•18 views

Deserialization of untrusted data

October CMS through 1.0.431 allows XSS by entering HTML on the Add Posts page...

4.3CVSS5.9AI score0.01085EPSS

Exploits3References2Affected Software1

CVE•added 2018/02/18 3:0 a.m.•49 views

CVE-2018-7198

CVE-2018-7198 affects October CMS up to version 1.0.431, specifically the RainLab Blog Plugin. It enables stored XSS by entering HTML on the Add Posts page, allowing a malicious payload to be stored and subsequently executed. The issue is documented across multiple sources (GHSA/OSV and exploit r...

6.1CVSS5.8AI score0.01085EPSS

Exploits3References2Affected Software1