Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-2197

Malware in sbrugna...

4.8CVSS5.5AI score0.02898EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2021-28057

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00456EPSS
Exploits1References1
OSV
OSV
added 2022/06/13 1:15 p.m.12 views

CVE-2021-40902

flatCore-CMS version 2.0.8 is affected by Cross Site Scripting XSS in the "Create New Page" option through the index page...

5.4CVSS6AI score
Exploits0References1
Cvelist
Cvelist
added 2022/06/13 12:20 p.m.12 views

CVE-2021-40902

flatCore-CMS version 2.0.8 is affected by Cross Site Scripting XSS in the "Create New Page" option through the index page...

5.5AI score0.00456EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/06/13 12:0 a.m.3 views

flatCore 跨站脚本漏洞

flatCore is a lightweight content management system CMS based on PHP and SQLite. A cross-site scripting vulnerability exists in flatCore version 2.0.8, which stems from a lack of checksum filtering of user-supplied and output data in the Create New Page option of the index page. An attacker can...

5.4CVSS5.7AI score0.00456EPSS
Exploits1References2
CNVD
CNVD
added 2018/08/06 12:0 a.m.2 views

WeaselCMS Cross-Site Request Forgery Vulnerability

WeaselCMS is a lightweight content management system CMS written in PHP. A cross-site request forgery vulnerability exists in WeaselCMS version 0.3.5. A remote attacker can exploit this vulnerability to create a new page with index.php?b=pages&a=new URI...

8.8CVSS8.8AI score0.00523EPSS
Exploits1References1
NVD
NVD
added 2018/04/16 9:58 a.m.21 views

CVE-2018-10118

Monstra CMS 3.0.4 has Stored XSS via the Name field on the Create New Page screen under the admin/index.php?id=pages URI, related to plugins/box/pages/pages.admin.php...

4.8CVSS4.8AI score0.02898EPSS
Exploits2References2
OSV
OSV
added 2018/04/16 9:58 a.m.15 views

CVE-2018-10118

Monstra CMS 3.0.4 has Stored XSS via the Name field on the Create New Page screen under the admin/index.php?id=pages URI, related to plugins/box/pages/pages.admin.php...

4.8CVSS5AI score
Exploits0References2
Prion
Prion
added 2018/04/16 9:58 a.m.19 views

Cross site scripting

Monstra CMS 3.0.4 has Stored XSS via the Name field on the Create New Page screen under the admin/index.php?id=pages URI, related to plugins/box/pages/pages.admin.php...

3.5CVSS4.8AI score0.02898EPSS
Exploits2References2Affected Software1
CNVD
CNVD
added 2018/04/16 12:0 a.m.5 views

Monstra CMS Cross-Site Scripting Vulnerability (CNVD-2018-08254)

Monstra CMS is a lightweight PHP-based content management system CMS developed by Ukrainian software developer Sergey Romanenko. The system is easy to install and use, scalable and so on. A cross-site scripting vulnerability exists in Monstra CMS version 3.0.4. A remote attacker can exploit the...

4.8CVSS6.2AI score0.02898EPSS
Exploits2References1
Cvelist
Cvelist
added 2018/04/15 12:0 p.m.19 views

CVE-2018-10118

Monstra CMS 3.0.4 has Stored XSS via the Name field on the Create New Page screen under the admin/index.php?id=pages URI, related to plugins/box/pages/pages.admin.php...

5.7AI score0.02898EPSS
Exploits2References2
CVE
CVE
added 2018/04/15 12:0 p.m.71 views

CVE-2018-10118

Monstra CMS 3.0.4 is affected by a Stored XSS in the Name field on the Create New Page screen (admin/index.php?id=pages), related to plugins/box/pages/pages.admin.php. This CVE details the vulnerable component path and the input point that leads to script execution. The connected data confirms th...

4.8CVSS5.1AI score0.02898EPSS
Exploits2References2Affected Software1
Prion
Prion
added 2009/04/28 4:30 p.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Create New Page form in razorCMS 0.3 RC2 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the Page Title field...

3.5CVSS5.7AI score0.00869EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder