Lucene search
K

82 matches found

OSV
OSV
added 2023/11/27 12:15 a.m.6 views

CVE-2023-6303

A vulnerability was found in CSZCMS 1.3.0. It has been classified as problematic. This affects an unknown part of the file /admin/settings/ of the component Site Settings Page. The manipulation of the argument Additional Meta Tag with the input leads to cross site scripting. It is possible to...

4.8CVSS3.7AI score0.00605EPSS
Exploits1References3
NVD
NVD
added 2023/11/27 12:15 a.m.20 views

CVE-2023-6303

A vulnerability was found in CSZCMS 1.3.0. It has been classified as problematic. This affects an unknown part of the file /admin/settings/ of the component Site Settings Page. The manipulation of the argument Additional Meta Tag with the input leads to cross site scripting. It is possible to...

4.8CVSS0.00605EPSS
Exploits1References3
OSV
OSV
added 2023/11/27 12:15 a.m.4 views

CVE-2023-6302

A vulnerability was found in CSZCMS 1.3.0 and classified as critical. Affected by this issue is some unknown functionality of the file \views\templates of the component File Manager Page. The manipulation leads to permission issues. The attack may be launched remotely. The exploit has been...

7.2CVSS5.3AI score0.00876EPSS
Exploits1References3
NVD
NVD
added 2023/11/27 12:15 a.m.19 views

CVE-2023-6302

A vulnerability was found in CSZCMS 1.3.0 and classified as critical. Affected by this issue is some unknown functionality of the file \views\templates of the component File Manager Page. The manipulation leads to permission issues. The attack may be launched remotely. The exploit has been...

7.2CVSS0.00876EPSS
Exploits1References3
Prion
Prion
added 2023/11/27 12:15 a.m.19 views

Design/Logic Flaw

A vulnerability was found in CSZCMS 1.3.0 and classified as critical. Affected by this issue is some unknown functionality of the file \views\templates of the component File Manager Page. The manipulation leads to permission issues. The attack may be launched remotely. The exploit has been...

5.8CVSS7AI score0.00876EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2023/11/27 12:15 a.m.14 views

Cross site scripting

A vulnerability was found in CSZCMS 1.3.0. It has been classified as problematic. This affects an unknown part of the file /admin/settings/ of the component Site Settings Page. The manipulation of the argument Additional Meta Tag with the input leads to cross site scripting. It is possible to...

3.3CVSS6.3AI score0.00605EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2023/11/27 12:0 a.m.34 views

CVE-2023-6303

CSZCMS 1.3.0 contains an XSS in the Site Settings Page, specifically /admin/settings/, triggered by manipulating the Additional Meta Tag with the payload . The vulnerability is remotely exploitable and details have been publicly disclosed (VDB-246129). Several connected sources confirm the affect...

4.8CVSS4.2AI score0.00605EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/11/27 12:0 a.m.18 views

CVE-2023-6303 CSZCMS Site Settings Page cross site scripting

A vulnerability was found in CSZCMS 1.3.0. It has been classified as problematic. This affects an unknown part of the file /admin/settings/ of the component Site Settings Page. The manipulation of the argument Additional Meta Tag with the input leads to cross site scripting. It is possible to...

3.3CVSS5.1AI score0.00605EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/11/27 12:0 a.m.23 views

CVE-2023-6302 CSZCMS File Manager Page templates permission

A vulnerability was found in CSZCMS 1.3.0 and classified as critical. Affected by this issue is some unknown functionality of the file \views\templates of the component File Manager Page. The manipulation leads to permission issues. The attack may be launched remotely. The exploit has been...

5.8CVSS7.2AI score0.00876EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/11/27 12:0 a.m.11 views

CVE-2023-6302 CSZCMS File Manager Page templates permission

A vulnerability was found in CSZCMS 1.3.0 and classified as critical. Affected by this issue is some unknown functionality of the file \views\templates of the component File Manager Page. The manipulation leads to permission issues. The attack may be launched remotely. The exploit has been...

5.8CVSS6.7AI score0.00876EPSS
Exploits1References3
CVE
CVE
added 2023/11/27 12:0 a.m.30 views

CVE-2023-6302

CSZCMS 1.3.0 has a vulnerability in the File Manager Page templates (viewstemplates) that allows permission issues. The root cause is tied to unknown functionality in the affected templates, enabling remote exploitation with publicly disclosed exploit details. Multiple sources (NVD, CVE records a...

7.2CVSS5.5AI score0.00876EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2023/11/27 12:0 a.m.9 views

PT-2023-32603 · Csz Cms · Csz Cms

Name of the Vulnerable Software and Affected Versions: CSZCMS version 1.3.0 Description: A problematic issue has been found, affecting the Site Settings Page component, specifically the /admin/settings/ part of the file. The manipulation of the Additional Meta Tag argument with the input leads to...

4.8CVSS3.8AI score0.00605EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/11/26 12:0 a.m.4 views

CSZCMS License Issue Vulnerability

CSZCMS is an open source web application that allows managing all content and settings on a website. An authorization issue vulnerability exists in CSZCMS version 1.3.0, which stems from an unknown function in the file view template in the component File Manager Page, resulting in a permissions...

7.2CVSS6.8AI score0.00876EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/11/26 12:0 a.m.5 views

CSZCMS Cross-Site Scripting Vulnerability

CSZCMS is an open source web application that allows managing all content and settings on a website. A cross-site scripting vulnerability exists in CSZCMS version 1.3.0, which stems from a cross-site scripting XSS vulnerability in the file /admin/settings/ of the component Site Settings Page...

4.8CVSS5.7AI score0.00605EPSS
Exploits1References4
OSV
OSV
added 2023/09/16 12:15 a.m.7 views

CVE-2023-41436

Cross Site Scripting vulnerability in CSZCMS v.1.3.0 allows a local attacker to execute arbitrary code via a crafted script to the Additional Meta Tag parameter in the Pages Content Menu component...

5.4CVSS6.1AI score0.00473EPSS
Exploits1References1
NVD
NVD
added 2023/09/16 12:15 a.m.22 views

CVE-2023-41436

Cross Site Scripting vulnerability in CSZCMS v.1.3.0 allows a local attacker to execute arbitrary code via a crafted script to the Additional Meta Tag parameter in the Pages Content Menu component...

5.4CVSS5.7AI score0.00473EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/09/16 12:15 a.m.7 views

CVE-2023-41436

Cross Site Scripting vulnerability in CSZCMS v.1.3.0 allows a local attacker to execute arbitrary code via a crafted script to the Additional Meta Tag parameter in the Pages Content Menu component...

5.4CVSS6.5AI score0.00473EPSS
Exploits1References2
Prion
Prion
added 2023/09/16 12:15 a.m.21 views

Cross site scripting

Cross Site Scripting vulnerability in CSZCMS v.1.3.0 allows a local attacker to execute arbitrary code via a crafted script to the Additional Meta Tag parameter in the Pages Content Menu component...

4.9CVSS5.6AI score0.00473EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2023/09/15 12:0 a.m.35 views

CVE-2023-41436

CVE-2023-41436 (CSZCMS v1.3.0) is a Cross Site Scripting vulnerability where a crafted input in the Additional Meta Tag field of the Pages Content Menu component enables a local attacker to execute arbitrary code in the context of the web application. The NVD entry lists a CVSS v3.1 base score of...

5.4CVSS5.7AI score0.00473EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/15 12:0 a.m.12 views

CVE-2023-41436

Cross Site Scripting vulnerability in CSZCMS v.1.3.0 allows a local attacker to execute arbitrary code via a crafted script to the Additional Meta Tag parameter in the Pages Content Menu component...

6.9AI score0.00473EPSS
Exploits1References1
Rows per page
Query Builder