Lucene search
K

5 matches found

securityvulns
securityvulns
added 2013/09/09 12:0 a.m.73 views

Multiple Vulnerabilities in BigTree CMS

Advisory ID: HTB23165 Product: BigTree CMS Vendor: BigTree CMS Vulnerable Versions: 4.0 RC2 and probably prior Tested Version: 4.0 RC2 Vendor Notification: July 17, 2013 Vendor Patch: July 17, 2013 Public Disclosure: August 7, 2013 Vulnerability Type: SQL Injection CWE-89, Cross-Site Scripting...

7.5CVSS0.4AI score0.03295EPSS
Exploits8
CVE
CVE
added 2013/08/13 6:0 p.m.61 views

CVE-2013-4880

CVE-2013-4880 is an XSS vulnerability affecting BigTree CMS 4.0 RC2 and earlier, in core/admin/modules/developer/modules/views/add.php where the module parameter is unsafely handled. The issue allows a remote attacker to inject arbitrary HTML/script by crafting a link such as /site/index.php/admi...

4.3CVSS5.6AI score0.03295EPSS
Exploits5References5Affected Software1
Circl
Circl
added 2013/08/08 12:0 a.m.6 views

CVE-2013-4880

creationtimestamp| type| source ---|---|--- 2013-08-08 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/27431...

4.3CVSS5.7AI score0.03295EPSS
Exploits5References1
0day.today
0day.today
added 2013/08/08 12:0 a.m.71 views

BigTree CMS 4.0 RC2 - Multiple Vulnerabilities

BigTree CMS version 4.0 RC2 suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities. Vendor: BigTree CMS Vulnerable Versions: 4.0 RC2 and probably prior Tested Version: 4.0 RC2 Vendor Notification: July 17, 2013 Vendor Patch: July 17, 2013 Public...

7.5CVSS7.6AI score0.03295EPSS
Exploits8
Exploit DB
Exploit DB
added 2013/08/08 12:0 a.m.66 views

BigTree CMS 4.0 RC2 - Multiple Vulnerabilities

Advisory ID: HTB23165 Product: BigTree CMS Vendor: BigTree CMS Vulnerable Versions: 4.0 RC2 and probably prior Tested Version: 4.0 RC2 Vendor Notification: July 17, 2013 Vendor Patch: July 17, 2013 Public Disclosure: August 7, 2013 Vulnerability Type: SQL Injection CWE-89, Cross-Site Scripting...

7.5CVSS7AI score0.03295EPSS
Exploits8
Rows per page
Query Builder