Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-2188

Malware in sbrugna...

4.8CVSS5.3AI score0.02195EPSS
Exploits5References3
Exploit DB
Exploit DB
added 2018/04/23 12:0 a.m.39 views

Monstra cms 3.0.4 - Persitent Cross-Site Scripting

Exploit Title: Monstra cms 3.0.4 - Persitent Cross-Site Scripting Date: 2018-04-14 Exploit Author: Wenming Jiang Vendor Homepage: https://github.com/monstra-cms/monstra Software Link: https://github.com/monstra-cms/monstra Version: 3.0.4 Tested on: php 5.6, apache2.2.29, macos 10.12.6 CVE...

4.8CVSS5.5AI score0.02195EPSS
Exploits5
OSV
OSV
added 2018/04/16 9:58 a.m.17 views

CVE-2018-10109

Monstra CMS 3.0.4 has a stored XSS vulnerability when an attacker has access to the editor role, and enters the payload in the content section of a new page in the blog catalog...

4.8CVSS5.1AI score
Exploits0References2
Prion
Prion
added 2018/04/16 9:58 a.m.16 views

Cross site scripting

Monstra CMS 3.0.4 has a stored XSS vulnerability when an attacker has access to the editor role, and enters the payload in the content section of a new page in the blog catalog...

3.5CVSS4.7AI score0.02195EPSS
Exploits5References2Affected Software1
CVE
CVE
added 2018/04/14 1:0 p.m.78 views

CVE-2018-10109

Monstra CMS 3.0.4 is affected by a stored XSS (CVE-2018-10109). An attacker with the editor role can inject a payload into the content section when creating a new page in the blog catalog; the payload is stored and later rendered, enabling JavaScript execution. Multiple sources corroborate the ed...

4.8CVSS5AI score0.02195EPSS
Exploits5References2Affected Software1
Cvelist
Cvelist
added 2018/04/14 1:0 p.m.24 views

CVE-2018-10109

Monstra CMS 3.0.4 has a stored XSS vulnerability when an attacker has access to the editor role, and enters the payload in the content section of a new page in the blog catalog...

5.2AI score0.02195EPSS
Exploits5References2
Rows per page
Query Builder