Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

99 matches found

NVD
NVDadded 2024/08/25 4:15 a.m.10 views

CVE-2024-8144

A vulnerability classified as problematic was found in ClassCMS 4.8. Affected by this vulnerability is an unknown functionality of the file /index.php/admin of the component Logo Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been...

6.1CVSS0.00127EPSS
Exploits1References4
OSV
OSVadded 2024/08/25 4:15 a.m.9 views

CVE-2024-8144

A vulnerability classified as problematic was found in ClassCMS 4.8. Affected by this vulnerability is an unknown functionality of the file /index.php/admin of the component Logo Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been...

6.1CVSS6.2AI score
Exploits0References4
Cvelist
Cvelistadded 2024/08/25 3:31 a.m.27 views

CVE-2024-8144 ClassCMS Logo admin cross site scripting

A vulnerability classified as problematic was found in ClassCMS 4.8. Affected by this vulnerability is an unknown functionality of the file /index.php/admin of the component Logo Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been...

5.3CVSS0.00127EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2024/08/25 3:31 a.m.16 views

CVE-2024-8144 ClassCMS Logo admin cross site scripting

A vulnerability classified as problematic was found in ClassCMS 4.8. Affected by this vulnerability is an unknown functionality of the file /index.php/admin of the component Logo Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been...

5.3CVSS6.2AI score0.00127EPSS
Exploits1References4
CVE
CVEadded 2024/08/25 3:31 a.m.56 views

CVE-2024-8144

ClassCMS 4.8 contains an XSS vulnerability in the Logo Handler component, specifically via the unknown functionality at /index.php/admin. The issue allows remote exploitation and has public disclosure. Several sources corroborate a cross-site scripting impact originating from that admin entry poi...

6.1CVSS3.9AI score0.00127EPSS
Exploits1References4Affected Software1
CNNVD
CNNVDadded 2024/08/25 12:0 a.m.2 views

ClassCMS 安全漏洞

ClassCMS is a simple, flexible, secure and easy-to-expand content management system from China ClassCMS open source. A security vulnerability exists in ClassCMS version 4.8, which originates from the parameter Title in the file /index.php/admin can lead to cross-site scripting...

5.1CVSS3.8AI score0.00102EPSS
Exploits1References5
CNNVD
CNNVDadded 2024/08/25 12:0 a.m.1 views

ClassCMS 跨站脚本漏洞

ClassCMS is a simple, flexible, secure and easy-to-expand content management system from China ClassCMS open source. A cross-site scripting vulnerability exists in ClassCMS version 4.8, which originates from some unknown functions in the file /index.php/admin that can lead to cross-site scripting...

6.1CVSS4.3AI score0.00127EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2024/08/24 12:0 a.m.2 views

PT-2024-38833 · Classcms · Classcms

Name of the Vulnerable Software and Affected Versions: ClassCMS version 4.8 Description: A vulnerability was found in ClassCMS, affecting an unknown functionality of the file /index.php/admin of the component Logo Handler. The manipulation leads to cross site scripting. The attack can be launched...

6.1CVSS4.3AI score0.00127EPSS
Exploits1References16
Positive Technologies
Positive Technologiesadded 2024/08/24 12:0 a.m.2 views

PT-2024-38834 · Classcms · Classcms

Name of the Vulnerable Software and Affected Versions: ClassCMS version 4.8 Description: A vulnerability has been found in ClassCMS, affecting some unknown functionality of the file /index.php/admin of the component Article Handler. The manipulation of the Title argument leads to basic cross-site...

5.1CVSS4.1AI score0.00102EPSS
Exploits1References15
CNVD
CNVDadded 2024/07/23 12:0 a.m.5 views

ClassCMS Cross-Site Scripting Vulnerability (CNVD-2024-33676)

ClassCMS is China ClassCMS open source a simple , flexible , secure , easy to expand the content management system . ClassCMS cross-site scripting vulnerability , the vulnerability stems from /admin/?action=home&do=shop:index&keyword=&kind=all file in the order parameter contains cross-site...

5.4CVSS6.1AI score0.00126EPSS
Exploits1References1
NVD
NVDadded 2024/07/20 10:15 p.m.10 views

CVE-2024-6932

A vulnerability was found in ClassCMS 4.5. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/?action=home&do=shop:index&keyword=&kind=all. The manipulation of the argument order leads to cross site scripting. The attack can be...

5.4CVSS0.00126EPSS
Exploits1References4
OSV
OSVadded 2024/07/20 10:15 p.m.2 views

CVE-2024-6932

A vulnerability was found in ClassCMS 4.5. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/?action=home&do=shop:index&keyword=&kind=all. The manipulation of the argument order leads to cross site scripting. The attack can be...

5.4CVSS3.8AI score0.00126EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2024/07/20 9:31 p.m.12 views

CVE-2024-6932 ClassCMS cross site scripting

A vulnerability was found in ClassCMS 4.5. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/?action=home&do=shop:index&keyword=&kind=all. The manipulation of the argument order leads to cross site scripting. The attack can be...

5.3CVSS3.8AI score0.00126EPSS
Exploits1References4
CVE
CVEadded 2024/07/20 9:31 p.m.49 views

CVE-2024-6932

CVE-2024-6932 affects ClassCMS 4.5. The vulnerability is a cross-site scripting issue in an unknown functionality of the file /admin/?action=home&do=shop:index&keyword=&kind=all, caused by manipulation of the order parameter. The attack can be launched remotely and the exploit has been disclosed ...

5.4CVSS3.8AI score0.00126EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2024/07/20 9:31 p.m.14 views

CVE-2024-6932 ClassCMS cross site scripting

A vulnerability was found in ClassCMS 4.5. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/?action=home&do=shop:index&keyword=&kind=all. The manipulation of the argument order leads to cross site scripting. The attack can be...

5.3CVSS0.00126EPSS
Exploits1References4
CNNVD
CNNVDadded 2024/07/20 12:0 a.m.3 views

ClassCMS 跨站脚本漏洞

ClassCMS is China ClassCMS open source a simple , flexible , secure , easy to expand the content management system . ClassCMS cross-site scripting vulnerability , the vulnerability stems from /admin/?action=home&do=shop:index&keyword=&kind=all file in the order parameter contains cross-site...

5.4CVSS6.2AI score0.00126EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2024/07/20 12:0 a.m.2 views

PT-2024-37970 · Classcms · Classcms

Name of the Vulnerable Software and Affected Versions: ClassCMS version 4.5 Description: A vulnerability has been found in an unknown functionality of the file "/admin/?action=home&do=shop:index&keyword=&kind=all". The manipulation of the order argument leads to cross-site scripting. The attack c...

5.4CVSS4.3AI score0.00126EPSS
Exploits1References7
OSV
OSVadded 2022/12/22 3:15 p.m.1 views

CVE-2022-45966

here is an arbitrary file upload vulnerability in the file management function module of Classcms3.5...

9.8CVSS5.8AI score
Exploits0References1
CNNVD
CNNVDadded 2022/12/22 12:0 a.m.1 views

ClassCMS 代码问题漏洞

ClassCMS is a simple, flexible, secure and easy-to-expand content management system in China. A security vulnerability exists in ClassCMS version 3.5, which originates from an arbitrary file upload in the file management functional module...

9.8CVSS8.4AI score0.00344EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2022/12/22 12:0 a.m.2 views

PT-2022-27702 · Classcms · Classcms

Name of the Vulnerable Software and Affected Versions: Classcms version 3.5 Description: The issue is related to an arbitrary file upload vulnerability in the file management function module. Recommendations: For Classcms version 3.5, consider restricting access to the file management function...

9.8CVSS9.3AI score0.00344EPSS
Exploits1References3
Rows per page
Query Builder