CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

125 matches found

Anchor CMS 0.12.3 - Error Log Exposure

Anchor CMS 0.12.3 is susceptible to an error log exposure vulnerability due to an issue in config/error.php. The error log is exposed at an errors.log URI, and contains MySQL credentials if a MySQL error such as "Too many connections" has occurred. id: CVE-2018-7251 info: name: Anchor CMS 0.12.3 ...

9.8CVSS7.3AI score0.90603EPSS

Exploits4References5

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2013-4940

Malware in sbrugna...

2.6CVSS6.4AI score0.05017EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2015-5637

Malware in sbrugna...

7.5CVSS6.4AI score0.00553EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2015-5077

Malware in sbrugna...

6.1CVSS6.3AI score0.0024EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-16090

Malware in sbrugna...

8.8CVSS8.4AI score0.09213EPSS

Exploits4References6

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2014-9007

Malware in sbrugna...

4.3CVSS6.4AI score0.00245EPSS

Exploits2References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2021-32953

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00302EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-17556

Malicious code in bioql PyPI...

5.4CVSS6.3AI score0.00628EPSS

Exploits4References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-0502

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.0024EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-1278

Malicious code in bioql PyPI...

4.5CVSS4.8AI score0.00115EPSS

Exploits1References3

Packet Storm•added 2025/08/12 12:0 a.m.•100 views

📄 Anchor CMS 0.12.7 Cross Site Scripting

Anchor CMS version 0.12.7 suffers from a persistent cross site scripting vulnerability. Anchor CMS v0.12.7 - Stored XSS CVE-2025-46041 Anchor CMS v0.12.7 is vulnerable to a Stored Cross-Site Scripting XSS vulnerability in the description field of the /admin/pages/add interface. CVE ID...

5.4CVSS6.6AI score0.00628EPSS

Exploits4

Exploit DB•added 2025/06/15 12:0 a.m.•354 views

Anchor CMS 0.12.7 - Stored Cross Site Scripting (XSS)

Exploit Title: Anchor CMS 0.12.7 - Stored Cross Site Scripting XSS Google Dork: inurl:"/admin/pages/add" "Anchor CMS" Date: 2025-06-08 Exploit Author: /bin/neko Vendor Homepage: http://anchorcms.com Software Link: https://github.com/anchorcms/anchor-cms Version: 0.12.7 Tested on: Ubuntu 22.04 +...

5.4CVSS5.6AI score0.00628EPSS

Exploits4

RedhatCVE•added 2025/06/11 12:6 a.m.•4 views

CVE-2025-46041

A stored cross-site scripting XSS vulnerability in Anchor CMS v0.12.7 allows attackers to inject malicious JavaScript via the page description field in the page creation interface /admin/pages/add...

5.4CVSS5.1AI score0.00628EPSS

Exploits4References1

OSV•added 2025/06/09 5:15 p.m.•4 views

CVE-2025-46041

A stored cross-site scripting XSS vulnerability in Anchor CMS v0.12.7 allows attackers to inject malicious JavaScript via the page description field in the page creation interface /admin/pages/add...

5.4CVSS5.6AI score0.00628EPSS

Exploits4References2

NVD•added 2025/06/09 5:15 p.m.•8 views

CVE-2025-46041

A stored cross-site scripting XSS vulnerability in Anchor CMS v0.12.7 allows attackers to inject malicious JavaScript via the page description field in the page creation interface /admin/pages/add...

5.4CVSS0.00628EPSS

Exploits4References2

CNNVD•added 2025/06/09 12:0 a.m.•2 views

Anchor CMS 安全漏洞

Anchor CMS is a CMS project by the Anchor team. A security vulnerability exists in Anchor CMS version v0.12.7, which stems from the page description field in the page creation screen being vulnerable to stored cross-site scripting attacks...

5.4CVSS5.8AI score0.00628EPSS

Exploits4References4

Cvelist•added 2025/06/09 12:0 a.m.•8 views

CVE-2025-46041

A stored cross-site scripting XSS vulnerability in Anchor CMS v0.12.7 allows attackers to inject malicious JavaScript via the page description field in the page creation interface /admin/pages/add...

0.00628EPSS

Exploits4References2

Vulnrichment•added 2025/06/09 12:0 a.m.•3 views

CVE-2025-46041

A stored cross-site scripting XSS vulnerability in Anchor CMS v0.12.7 allows attackers to inject malicious JavaScript via the page description field in the page creation interface /admin/pages/add...

5.6AI score0.00628EPSS

Exploits4References2

CVE•added 2025/06/09 12:0 a.m.•46 views

CVE-2025-46041

Anchor CMS v0.12.7 is affected by CVE-2025-46041: a stored XSS in the page creation interface, exploitable via the description field on /admin/pages/add. An authenticated user (admin/editor) can inject arbitrary JavaScript which is stored and executed when the page is viewed. Affected component/l...

5.4CVSS5.6AI score0.00628EPSS

Exploits4References2Affected Software1

Positive Technologies•added 2025/06/09 12:0 a.m.•3 views

PT-2025-24544 · Unknown · Anchor Cms

Name of the Vulnerable Software and Affected Versions: Anchor CMS version 0.12.7 Description: A stored cross-site scripting XSS issue allows attackers to inject malicious JavaScript via the page description field in the page creation interface, specifically the "/admin/pages/add" API endpoint...

5.4CVSS5.2AI score0.00628EPSS

Exploits4References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by