4 matches found
EUVD-2018-11519
Malware in sbrugna...
Sql injection
FROG CMS 0.9.5 has XSS via the admin/?/snippet/add name parameter, which is mishandled during an edit action, a related issue to CVE-2018-10319...
CVE-2018-19844
FROG CMS 0.9.5 has XSS via the admin/?/snippet/add name parameter, which is mishandled during an edit action, a related issue to CVE-2018-10319...
CVE-2018-10319
Frog CMS 0.9.5 is affected by a Cross‑Site Scripting (XSS) vulnerability in the admin/?/snippet/edit (snippet[name]) parameter, i.e., the Edit Snippet action. The issue enables injection via the snippet name during edit, as documented under CVE-2018-10319. Connected records also reference the rel...