Lucene search
K

4 matches found

0day.today
0day.today
added 2018/05/29 12:0 a.m.42 views

ClipperCMS 1.3.3 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: ClipperCMS 1.3.3 Persistent XSS on 'Site name' field Exploit Author: Nathu Nandwani Website: http://nandtech.co/ Vendor Homepage: http://www.clippercms.com/ Software Link:...

5.2AI score0.01877EPSS
Exploits5
exploitpack
exploitpack
added 2018/05/27 12:0 a.m.46 views

ClipperCMS 1.3.3 - Cross-Site Scripting

ClipperCMS 1.3.3 - Cross-Site Scripting Exploit Title: ClipperCMS 1.3.3 Persistent XSS on 'Site name' field Date: 05/27/2018 Exploit Author: Nathu Nandwani Website: http://nandtech.co/ Vendor Homepage: http://www.clippercms.com/ Software Link:...

3.5CVSS5AI score0.01877EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/05/27 12:0 a.m.64 views

ClipperCMS 1.3.3 - Cross-Site Scripting

Exploit Title: ClipperCMS 1.3.3 Persistent XSS on 'Site name' field Date: 05/27/2018 Exploit Author: Nathu Nandwani Website: http://nandtech.co/ Vendor Homepage: http://www.clippercms.com/ Software Link: https://github.com/ClipperCMS/ClipperCMS/releases/tag/clipper1.3.3 Version: 1.3.3 Tested on:...

4.8CVSS5.2AI score0.01877EPSS
Exploits5
CVE
CVE
added 2018/05/24 4:0 p.m.66 views

CVE-2018-11332

ClipperCMS 1.3.3 is affected by a stored XSS in the Site Name field under Configurations (site tab). The vulnerability arises because user input is not sanitized in the manager/processors/save_settings.processor.php endpoint, allowing an authenticated attacker to inject arbitrary script/HTML. Pub...

4.8CVSS4.8AI score0.01877EPSS
Exploits5References2Affected Software1
Rows per page
Query Builder