Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

CNNVD
CNNVDadded 2026/03/31 12:0 a.m.3 views

baserCMS 跨站脚本漏洞

BaserCMS is a corporate-level content management system CMS developed by the baserCMS team. Versions of baserCMS prior to 5.2.3 had a cross-site scripting vulnerability; this vulnerability originated from a blog article-related feature module and made it susceptible to cross-site scripting attack...

6.9CVSS7.1AI score0.00233EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-16286

Malware in sbrugna...

5.4CVSS5.6AI score0.0052EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2025/05/22 3:59 p.m.8 views

CVE-2020-23241

Cross Site Scripting XSS vulnerability in CMS Made Simple 2.2.14 in "Extra" via 'News Article" feature...

4.8CVSS5.9AI score0.00473EPSS
Exploits1
CVE
CVEadded 2025/03/28 12:0 a.m.59 views

CVE-2025-28091

CVE-2025-28091 pertains to the maccms10 package, version 2025.1000.4047, which is affected by a Server-Side Request Forgery (SSRF) in the Add Article feature. The vulnerability is documented across multiple sources (NVD, Red Hat, CVE list, etc.), confirming the affected product and the vulnerabil...

9.1CVSS7.3AI score0.00388EPSS
Exploits1References2Affected Software1
NVD
NVDadded 2021/07/02 6:15 p.m.16 views

CVE-2020-36414

A stored cross scripting XSS vulnerability in CMS Made Simple 2.2.14 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the "URL slug" or "Extra" fields under the "Add Article" feature...

5.4CVSS0.00473EPSS
Exploits1References1
OSV
OSVadded 2018/07/01 6:29 p.m.19 views

CVE-2018-13038

OpenSID 18.06-pasca has an Unrestricted File Upload vulnerability via an Attachment Document in the article feature. This vulnerability leads to uploading arbitrary PHP code via a .php filename with the application/pdf Content-Type...

9.8CVSS7.4AI score
Exploits0References1
NVD
NVDadded 2018/07/01 6:29 p.m.15 views

CVE-2018-13038

OpenSID 18.06-pasca has an Unrestricted File Upload vulnerability via an Attachment Document in the article feature. This vulnerability leads to uploading arbitrary PHP code via a .php filename with the application/pdf Content-Type...

9.8CVSS9.5AI score0.0177EPSS
Exploits1References1
Cvelist
Cvelistadded 2018/07/01 6:0 p.m.15 views

CVE-2018-13038

OpenSID 18.06-pasca has an Unrestricted File Upload vulnerability via an Attachment Document in the article feature. This vulnerability leads to uploading arbitrary PHP code via a .php filename with the application/pdf Content-Type...

9.5AI score0.0177EPSS
Exploits1References1
OSV
OSVadded 2017/03/24 3:59 p.m.1 views

CVE-2017-7257

XSS exists in the CMS Made Simple CMSMS 2.1.6 "Content--News--Add Article" feature via the m1content parameter. Someone must login to conduct the attack...

5.4CVSS5.8AI score0.0052EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2017/03/24 12:0 a.m.2 views

PT-2017-17616 · Cms Made Simple · Cms Made Simple

Name of the Vulnerable Software and Affected Versions: CMS Made Simple versions 2.1.6 Description: A security issue exists in the "Content--News--Add Article" feature of the software, where an attacker can exploit the m1 content parameter to conduct a cross-site scripting XSS attack. This attack...

5.4CVSS5.3AI score0.0052EPSS
Exploits1References4
Rows per page
Query Builder