6 matches found
CVE-2025-70958
Multiple reflected cross-site scripting XSS vulnerabilities in the installation module of Subrion CMS v4.2.1 allows attackers to execute arbitrary Javascript in the context of the user's browser via injecting a crafted payload into the dbuser, dbpwd, and dbname parameters...
CVE-2023-5013
A vulnerability has been found in Pluck CMS 4.7.18 and classified as problematic. This vulnerability affects unknown code of the file install.php of the component Installation Handler. The manipulation of the argument contents with the input leads to cross site scripting. The attack can be...
Gila CMS Cross-site Scripting Vulnerability
Cross Site Scripting XSS vulnerability in admuser parameter in Gila CMS version 1.11.3, allows remote attackers to execute arbitrary code during the Gila CMS installation...
CVE-2020-20523
Cross Site Scripting XSS vulnerability in admuser parameter in Gila CMS version 1.11.3, allows remote attackers to execute arbitrary code during the Gila CMS installation...
CMS Made Simple 2.1.6 Remote Code Execution Vulnerability
Exploit for php platform in category web applications Exploit Title: CMS Made Simple 2.1.6 - Remote Code Execution Date: 2018-02-26 Exploit Author: Keerati T. Vendor Homepage: http://www.cmsmadesimple.org/ Software Link: http://s3.amazonaws.com/cmsms/downloads/13570/cmsms-2.1.6-install.zip Versio...
MyLittleForum 2.3.5 - PHP Command Injection
Exploit for php platform in category web applications / + Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MYLITTLEFORUM-PHP-CMD-EXECUTION.txt + ISR: APPARITIONSEC Vendor: ================= mylittleforum.net Download:...