Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:54 a.m.9 views

CVE-2018-1000638

MiniCMS version 1.1 contains a Cross Site Scripting XSS vulnerability in http://example.org/mc-admin/page.php?date=payload that can result in code injection...

6.1CVSS6AI score0.02191EPSS
Exploits3References1
Circl
Circl
added 2025/04/12 9:2 p.m.11 views

CVE-2018-1000638

creationtimestamp| type| source ---|---|--- 2025-04-12 21:02:13+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lmngl2knos2a...

6.1CVSS6.9AI score0.02191EPSS
Exploits3References1
Packet Storm
Packet Storm
added 2025/04/11 12:0 a.m.288 views

📄 MiniCMS 1.1 Cross Site Scripting

MiniCMS version 1.1 suffers from a cross site scripting vulnerability. Exploit Title: MiniCMS 1.1 Cross-Site Scripting XSS in date Parameter of mc-admin/page.php Date: 2024-10-26 Exploit Author: CodeSecLab Vendor Homepage: https://github.com/bg5sbk/MiniCMS Software Link:...

6.1CVSS6AI score0.02191EPSS
Exploits3
Exploit DB
Exploit DB
added 2025/04/11 12:0 a.m.233 views

MiniCMS 1.1 - Cross Site Scripting (XSS)

Exploit Title: MiniCMS 1.1 - Cross Site Scripting XSS Date: 2024-10-26 Exploit Author: CodeSecLab Vendor Homepage: https://github.com/bg5sbk/MiniCMS Software Link: https://github.com/bg5sbk/MiniCMS Version: 1.10 Tested on: Ubuntu Windows CVE : CVE-2018-1000638 PoC: GET...

6.1CVSS6.4AI score0.02191EPSS
Exploits3
CVE
CVE
added 2018/08/20 7:0 p.m.75 views

CVE-2018-1000638

CVE-2018-1000638 affects MiniCMS 1.1 with a Cross-Site Scripting (XSS) vulnerability in the URL parameter mc-admin/page.php?date={payload}. The vulnerability allows injection when the GET parameter date is echoed without proper encoding, per multiple sources, including exploit references with PoC...

6.1CVSS6.2AI score0.02191EPSS
Exploits3References1Affected Software1
Rows per page
Query Builder