5 matches found
CVE-2014-4710
CVE-2014-4710 affects ZeroCMS 1.0. The vulnerability is a stored XSS in the ZeroCMS component referenced as zero_user_account.php, where the Full Name field can be submitted unsafely. The root cause, as described in the source material, is that user input is unsanitized and saved in the backend d...
ZeroCMS 1.0 - Persistent Cross-Site Scripting Vulnerability
No description provided by source. Exploit Title: Persistent ZeroCMS Cross-Site Scripting Vulnerability Discovered by: Mayuresh Dani Vendor Homepage: http://www.aas9.in/zerocms/ Software Link: https://github.com/pcx1256/zerocms/archive/master.zip Version: 1.0? Date: 2014-07-25 Tested on: Windows ...
ZeroCMS 1.0 - Persistent Cross-Site Scripting
Exploit Title: Persistent ZeroCMS Cross-Site Scripting Vulnerability Discovered by: Mayuresh Dani Vendor Homepage: http://www.aas9.in/zerocms/ Software Link: https://github.com/pcx1256/zerocms/archive/master.zip Version: 1.0? Date: 2014-07-25 Tested on: Windows 7 / Mozilla Firefox Ubuntu 14.04 /...
ZeroCMS 1.0 - Persistent Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: Persistent ZeroCMS Cross-Site Scripting Vulnerability Discovered by: Mayuresh Dani Vendor Homepage: http://www.aas9.in/zerocms/ Software Link: https://github.com/pcx1256/zerocms/archive/master.zip Version: 1.0? Date: 2014-07-25...
ZeroCMS 1.0 - Persistent Cross-Site Scripting
ZeroCMS 1.0 - Persistent Cross-Site Scripting Exploit Title: Persistent ZeroCMS Cross-Site Scripting Vulnerability Discovered by: Mayuresh Dani Vendor Homepage: http://www.aas9.in/zerocms/ Software Link: https://github.com/pcx1256/zerocms/archive/master.zip Version: 1.0? Date: 2014-07-25 Tested o...