26 matches found
CVE-2024-41603
Spina CMS v2.18.0 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via the URI /admin/layout...
CVE-2018-20774
Frog CMS 0.9.5 has XSS via the admin/?/layout/edit/1 Body field...
CVE-2018-20772
Frog CMS 0.9.5 allows PHP code execution via ?php to the admin/?/layout/edit/1 URI...
CVE-2018-20774
CVE-2018-20774 affects Frog CMS 0.9.5, with a cross-site scripting (XSS) vulnerability in the admin/?/layout/edit/1 Body field. The root cause is improper input handling that allows injecting script into a form field which is subsequently rendered without sufficient sanitization, enabling client-...
CVE-2018-10320
Frog CMS 0.9.5 has XSS via the admin/?/layout/edit layoutname parameter, aka Edit Layout...
Frog CMS Cross-Site Scripting Vulnerability (CNVD-2018-08554)
Frog CMS is a content management system CMS developed by software developer Philippe Archambault. The system provides tools for page templates, user rights management, and document management. A cross-site scripting vulnerability exists in Frog CMS version 0.9.5. A remote attacker can exploit the...