5 matches found
CVE-2018-1000638
MiniCMS version 1.1 contains a Cross Site Scripting XSS vulnerability in http://example.org/mc-admin/page.php?date=payload that can result in code injection...
CVE-2018-1000638
creationtimestamp| type| source ---|---|--- 2025-04-12 21:02:13+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lmngl2knos2a...
📄 MiniCMS 1.1 Cross Site Scripting
MiniCMS version 1.1 suffers from a cross site scripting vulnerability. Exploit Title: MiniCMS 1.1 Cross-Site Scripting XSS in date Parameter of mc-admin/page.php Date: 2024-10-26 Exploit Author: CodeSecLab Vendor Homepage: https://github.com/bg5sbk/MiniCMS Software Link:...
MiniCMS 1.1 - Cross Site Scripting (XSS)
Exploit Title: MiniCMS 1.1 - Cross Site Scripting XSS Date: 2024-10-26 Exploit Author: CodeSecLab Vendor Homepage: https://github.com/bg5sbk/MiniCMS Software Link: https://github.com/bg5sbk/MiniCMS Version: 1.10 Tested on: Ubuntu Windows CVE : CVE-2018-1000638 PoC: GET...
CVE-2018-1000638
CVE-2018-1000638 affects MiniCMS 1.1 with a Cross-Site Scripting (XSS) vulnerability in the URL parameter mc-admin/page.php?date={payload}. The vulnerability allows injection when the GET parameter date is echoed without proper encoding, per multiple sources, including exploit references with PoC...