26 matches found
CVE-2022-27062
AeroCMS v0.0.1 was discovered to contain a stored cross-site scripting XSS vulnerability via addpost.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Post Title text field...
Cross site scripting
AeroCMS v0.0.1 was discovered to contain a stored cross-site scripting XSS vulnerability via addpost.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Post Title text field...
Cross site scripting
Social Codia SMS v1 was discovered to contain a stored cross-site scripting XSS vulnerability via addpost.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Post Title text field...
CVE-2022-27348
CVE-2022-27348 affects Social Codia SMS v1 (inventory management system). The connected documents confirm a stored cross-site scripting (XSS) vulnerability in add_post.php, where an attacker can inject a crafted payload into the Post Title text field to execute arbitrary web scripts/HTML. Root ca...
CVE-2022-27062
CVE-2022-27062 affects AeroCMS v0.0.1. The vulnerability is a stored cross-site scripting (XSS) in the Post Title field exposed via add_post.php, allowing an attacker to inject a crafted payload that executes arbitrary web scripts/HTML when rendered by the browser. The available sources consisten...
CVE-2022-27062
AeroCMS v0.0.1 was discovered to contain a stored cross-site scripting XSS vulnerability via addpost.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Post Title text field...