4 matches found
ClipperCMS 1.3.3 - Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: ClipperCMS 1.3.3 Persistent XSS on 'Site name' field Exploit Author: Nathu Nandwani Website: http://nandtech.co/ Vendor Homepage: http://www.clippercms.com/ Software Link:...
ClipperCMS 1.3.3 - Cross-Site Scripting
ClipperCMS 1.3.3 - Cross-Site Scripting Exploit Title: ClipperCMS 1.3.3 Persistent XSS on 'Site name' field Date: 05/27/2018 Exploit Author: Nathu Nandwani Website: http://nandtech.co/ Vendor Homepage: http://www.clippercms.com/ Software Link:...
ClipperCMS 1.3.3 - Cross-Site Scripting
Exploit Title: ClipperCMS 1.3.3 Persistent XSS on 'Site name' field Date: 05/27/2018 Exploit Author: Nathu Nandwani Website: http://nandtech.co/ Vendor Homepage: http://www.clippercms.com/ Software Link: https://github.com/ClipperCMS/ClipperCMS/releases/tag/clipper1.3.3 Version: 1.3.3 Tested on:...
CVE-2018-11332
ClipperCMS 1.3.3 is affected by a stored XSS in the Site Name field under Configurations (site tab). The vulnerability arises because user input is not sanitized in the manager/processors/save_settings.processor.php endpoint, allowing an authenticated attacker to inject arbitrary script/HTML. Pub...