CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Prion•added 2017/05/28 8:29 p.m.•10 views

Cross site scripting

andrzuk/FineCMS through 2017-05-28 is vulnerable to a reflected XSS in the search page via the text-search parameter to index.php in a route=search action...

4.3CVSS6.1AI score0.0024EPSS

Exploits0References1

CVE•added 2017/05/28 8:0 p.m.•49 views

CVE-2017-9252

Vulnerability context: CVE-2017-9252 affects FineCMS up to 2017-05-28. It is a reflected Cross-Site Scripting (XSS) in the search page, exploitable via the text-search parameter to index.php with route=search. What’s affected: FineCMS’s search functionality (versions prior to or including 2017-05...

6.1CVSS5.9AI score0.0024EPSS

Exploits0References1Affected Software1

Prion•added 2017/03/07 7:59 p.m.•11 views

Input validation

andrzuk/FineCMS before 2017-03-06 is vulnerable to a reflected XSS in index.php because of missing validation of the action parameter in application/classes/application.php...

4.3CVSS5.9AI score0.0024EPSS

Exploits1References2Affected Software1

OSV•added 2017/03/07 7:59 p.m.•8 views

CVE-2017-6511

andrzuk/FineCMS before 2017-03-06 is vulnerable to a reflected XSS in index.php because of missing validation of the action parameter in application/classes/application.php...

6.1CVSS5.9AI score

Exploits0References2

CVE•added 2017/03/07 7:0 p.m.•47 views

CVE-2017-6511

Affected software: andrzuk/FineCMS (versions before 2017-03-06). Vulnerability: reflected XSS in index.php due to missing validation of the action parameter in application/classes/application.php. Impact (as stated): allows reflected XSS, with no other impacts detailed in the provided documents. ...

6.1CVSS5.9AI score0.0024EPSS

Exploits1References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by