CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A cross-site scripting XSS vulnerability in Clansphere CMS v2011.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Username parameter...

6.1CVSS5.8AI score0.00392EPSS

Exploits1References1

0day.today•added 2023/03/27 12:0 a.m.•331 views

Clansphere CMS 2011.4 - Stored Cross-Site Scripting Vulnerability

Exploit Title: Clansphere CMS 2011.4 - Stored Cross-Site Scripting XSS Exploit Author: Sinem Şahin Vendor Homepage: https://www.csphere.eu/ Version: 2011.4 Tested on: Windows & XAMPP == Tutorial http://HOST/index.php?mod=buddys&action=create&id=925872 2- Write XSS Payload into the username of the...

6.8AI score

Exploits0

Exploit DB•added 2023/03/27 12:0 a.m.•259 views

Clansphere CMS 2011.4 - Stored Cross-Site Scripting (XSS)

Exploit Title: Clansphere CMS 2011.4 - Stored Cross-Site Scripting XSS Exploit Author: Sinem Şahin Date: 2022-10-08 Vendor Homepage: https://www.csphere.eu/ Version: 2011.4 Tested on: Windows & XAMPP == Tutorial http://HOST/index.php?mod=buddys&action=create&id=925872 2- Write XSS Payload into th...

7.4AI score

Exploits0

Packet Storm•added 2023/03/27 12:0 a.m.•161 views

Clansphere CMS 2011.4 Cross Site Scripting

6.8AI score

Exploits0

NVD•added 2022/11/09 4:15 p.m.•9 views

CVE-2022-43119

A cross-site scripting XSS vulnerability in Clansphere CMS v2011.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Username parameter...

6.1CVSS0.00392EPSS

Exploits1References1

Prion•added 2022/11/09 4:15 p.m.•13 views

Cross site scripting

A cross-site scripting XSS vulnerability in Clansphere CMS v2011.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Username parameter...

5.8CVSS5.9AI score0.00392EPSS

Exploits1References1Affected Software1

CVE•added 2022/11/09 12:0 a.m.•52 views

CVE-2022-43119

CVE-2022-43119 affects Clansphere CMS v2011.4. It provides a cross-site scripting vulnerability via the Username parameter, allowing attackers to inject arbitrary web scripts/HTML. Root cause appears to be unsanitized/unchecked input in Username, with impact of script execution in the browser. CV...

6.1CVSS5.8AI score0.00392EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2022/11/09 12:0 a.m.•3 views

CVE-2022-43119

A cross-site scripting XSS vulnerability in Clansphere CMS v2011.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Username parameter...

5.8AI score0.00392EPSS

Exploits1References1

CNNVD•added 2022/11/09 12:0 a.m.•2 views

sphere 跨站脚本漏洞

OpenSourceCMS.com Clansphere CMS is an OpenSourceCMS.com open source application. Provides a CMS framework for building websites. A cross-site scripting vulnerability exists in Clansphere CMS v2011.4. An attacker can exploit this vulnerability to execute arbitrary web script or HTML via a special...

6.1CVSS6.3AI score0.00392EPSS

Exploits1References3

Positive Technologies•added 2022/11/09 12:0 a.m.•2 views

PT-2022-26761 · Unknown · Clansphere Cms

Name of the Vulnerable Software and Affected Versions: Clansphere CMS version 2011.4 Description: A cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Username parameter. Recommendations: For Clansphere CMS version...

6.1CVSS6AI score0.00392EPSS

Exploits1References4

NVD•added 2021/03/23 2:15 p.m.•8 views

CVE-2021-27309

Clansphere CMS 2011.4 allows unauthenticated reflected XSS via "module" parameter...

6.1CVSS0.00887EPSS

Exploits1References1

NVD•added 2021/03/23 2:15 p.m.•14 views

CVE-2021-27310

Clansphere CMS 2011.4 allows unauthenticated reflected XSS via "language" parameter...

6.1CVSS0.03331EPSS

Exploits1References1