CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

Packet Storm•added 2023/05/24 12:0 a.m.•359 views

Cameleon CMS 2.7.4 Cross Site Scripting

Exploit Title: Authenticated Persistent XSS in Cameleon CMS 2.7.4 Google Dork: intext:"Camaleon CMS is a free and open-source tool and a fexible content management system CMS based on Ruby on Rails" Date: 2023-10-05 Exploit Author: Yasin Gergin Vendor Homepage: http://camaleon.tuzitio.com Softwar...

7.1AI score

Exploits0

NVD•added 2020/04/23 2:15 a.m.•9 views

CVE-2020-12071

Anchor 0.12.7 allows admins to cause XSS via crafted post content...

4.8CVSS4.9AI score0.00564EPSS

Exploits1References1

OSV•added 2020/04/23 2:15 a.m.•13 views

CVE-2020-12071

Anchor 0.12.7 allows admins to cause XSS via crafted post content...

4.8CVSS5.7AI score

Exploits0References1

CVE•added 2020/04/23 1:3 a.m.•112 views

CVE-2020-12071

Anchor CMS 0.12.7 is affected by an XSS vulnerability that allows an admin (privileged user) to inject crafted post content, triggering script execution in other users’ browsers. The issue is described across multiple sources as a cross-site scripting flaw stemming from the post creation feature;...

4.8CVSS4.8AI score0.00564EPSS

Exploits1References1Affected Software1