Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

82 matches found

RedhatCVE
RedhatCVEadded 2026/01/16 11:31 p.m.2 views

CVE-2021-47808

Cotonti Siena 0.9.19 contains a stored cross-site scripting vulnerability in the admin configuration panel's site title parameter. Attackers can inject malicious JavaScript code through the 'maintitle' parameter to execute scripts when administrators view the page...

5.4CVSS6.3AI score0.00017EPSS
Exploits1References1
NVD
NVDadded 2026/01/16 12:16 a.m.1 views

CVE-2021-47808

Cotonti Siena 0.9.19 contains a stored cross-site scripting vulnerability in the admin configuration panel's site title parameter. Attackers can inject malicious JavaScript code through the 'maintitle' parameter to execute scripts when administrators view the page...

5.4CVSS0.00017EPSS
Exploits1References4
OSV
OSVadded 2026/01/16 12:16 a.m.1 views

CVE-2021-47808

Cotonti Siena 0.9.19 contains a stored cross-site scripting vulnerability in the admin configuration panel's site title parameter. Attackers can inject malicious JavaScript code through the 'maintitle' parameter to execute scripts when administrators view the page...

5.4CVSS5.9AI score
Exploits0References4
CNNVD
CNNVDadded 2026/01/16 12:0 a.m.1 views

Cotonti Siena security vulnerabilities

Cotonti Siena is a powerful open-source web development framework and content manager developed by Cotonti. Version 0.9.19 of Cotonti Siena contains a security vulnerability. This vulnerability stems from the site title parameters in the administrator configuration panel, which contain stored...

5.4CVSS5.5AI score0.00017EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2026/01/15 11:25 p.m.1 views

CVE-2021-47808

Cotonti Siena 0.9.19 contains a stored cross-site scripting vulnerability in the admin configuration panel's site title parameter. Attackers can inject malicious JavaScript code through the 'maintitle' parameter to execute scripts when administrators view the page...

5.4CVSS5.1AI score0.00017EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichmentadded 2026/01/15 11:25 p.m.1 views

CVE-2021-47808 Cotonti Siena 0.9.19 - 'maintitle' Stored Cross-Site Scripting

Cotonti Siena 0.9.19 contains a stored cross-site scripting vulnerability in the admin configuration panel's site title parameter. Attackers can inject malicious JavaScript code through the 'maintitle' parameter to execute scripts when administrators view the page...

5.4CVSS5.9AI score0.00017EPSS
Exploits1References4
Cvelist
Cvelistadded 2026/01/15 11:25 p.m.24 views

CVE-2021-47808 Cotonti Siena 0.9.19 - 'maintitle' Stored Cross-Site Scripting

Cotonti Siena 0.9.19 contains a stored cross-site scripting vulnerability in the admin configuration panel's site title parameter. Attackers can inject malicious JavaScript code through the 'maintitle' parameter to execute scripts when administrators view the page...

5.4CVSS0.00017EPSS
Exploits1References4
CVE
CVEadded 2026/01/15 11:25 p.m.3 views

CVE-2021-47808

CVE-2021-47808 relates to Cotonti Siena 0.9.19, exposing a stored cross-site scripting (XSS) vulnerability in the admin configuration panel’s site title parameter. The issue allows injection of JavaScript through the ‘maintitle’ field, enabling script execution when administrators view the page. ...

5.4CVSS5.9AI score0.00017EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologiesadded 2026/01/15 12:0 a.m.2 views

PT-2026-3178

Cotonti Siena 0.9.19 contains a stored cross-site scripting vulnerability in the admin configuration panel's site title parameter. Attackers can inject malicious JavaScript code through the 'maintitle' parameter to execute scripts when administrators view the page...

7.2CVSS6.3AI score0.00017EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2013-4635

Malware in sbrugna...

7.5CVSS6.1AI score0.01022EPSS
Exploits5References9
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-42284

Malicious code in bioql PyPI...

4.8CVSS5.4AI score0.00296EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-16662

Malicious code in bioql PyPI...

5.4CVSS6.4AI score0.00141EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-21539

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00226EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-42285

Malicious code in bioql PyPI...

4.8CVSS5.4AI score0.00239EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/06/04 12:14 a.m.2 views

CVE-2025-44115

A vulnerability has been found in Cotonti Siena v0.9.25. Affected by this vulnerability is the file /admin.php?m=config=edit=core=title. The manipulation of the value of title leads to cross-site scripting...

5.4CVSS6.8AI score0.00141EPSS
Exploits1References1
NVD
NVDadded 2025/06/02 4:15 p.m.6 views

CVE-2025-44115

A vulnerability has been found in Cotonti Siena v0.9.25. Affected by this vulnerability is the file /admin.php?m=config&n=edit&o=core&p=title. The manipulation of the value of title leads to cross-site scripting...

5.4CVSS0.00141EPSS
Exploits1References3
OSV
OSVadded 2025/06/02 4:15 p.m.1 views

CVE-2025-44115

A vulnerability has been found in Cotonti Siena v0.9.25. Affected by this vulnerability is the file /admin.php?m=config&n=edit&o=core&p=title. The manipulation of the value of title leads to cross-site scripting...

5.4CVSS6.7AI score
Exploits0References3
CVE
CVEadded 2025/06/02 12:0 a.m.41 views

CVE-2025-44115

CVE-2025-44115 affects Cotonti Siena v0.9.25. The vulnerability is a cross-site scripting (XSS) flaw in the admin endpoint at /admin.php?m=config&n=edit&o=core&p=title where the value of the title parameter can be manipulated to inject script. According to connected sources, exploitation requires...

5.4CVSS6.5AI score0.00141EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichmentadded 2025/06/02 12:0 a.m.4 views

CVE-2025-44115

A vulnerability has been found in Cotonti Siena v0.9.25. Affected by this vulnerability is the file /admin.php?m=config&n=edit&o=core&p=title. The manipulation of the value of title leads to cross-site scripting...

6.2AI score0.00141EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2025/06/02 12:0 a.m.1 views

PT-2025-23531 · Unknown · Cotonti Siena

Name of the Vulnerable Software and Affected Versions: Cotonti Siena version 0.9.25 Description: A vulnerability has been found in Cotonti Siena. The issue affects the file "/admin.php?m=config&n=edit&o=core&p=title". The manipulation of the value of title leads to cross-site scripting...

5.4CVSS6AI score0.00141EPSS
Exploits1References9
Rows per page
Query Builder