Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-1977

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.01751EPSS
Exploits5References5
OSV
OSV
added 2022/05/24 5:5 p.m.17 views

GHSA-2G23-QMMP-FVMR Bolt Cross-site Scripting via the slug, teaser or title parameters

Bolt 3.6.4 has XSS via the slug, teaser, or title parameter to editcontent/pages, a related issue to CVE-2017-11128 and CVE-2018-19933...

6.1CVSS5.8AI score0.01751EPSS
Exploits5References4
Rosalinux
Rosalinux
added 2021/07/02 4:34 p.m.42 views

Advisory ROSA-SA-2021-1809

Software: bolt 0.7 OS: Cobalt 7.9 CVE-ID: CVE-2015-7309 CVE-Crit: HIGH CVE-DESC: The theme editor in Bolt before 2.2.5 does not check the file extension when renaming files, allowing remote authenticated users to execute arbitrary code by renaming a created file and then directly accessing it...

8.8CVSS6.8AI score0.38611EPSS
Exploits12
OSV
OSV
added 2019/12/31 5:15 p.m.14 views

CVE-2019-9553

Bolt 3.6.4 has XSS via the slug, teaser, or title parameter to editcontent/pages, a related issue to CVE-2017-11128 and CVE-2018-19933...

6.1CVSS5.7AI score
Exploits0References2
Prion
Prion
added 2019/12/31 5:15 p.m.22 views

Sql injection

Bolt 3.6.4 has XSS via the slug, teaser, or title parameter to editcontent/pages, a related issue to CVE-2017-11128 and CVE-2018-19933...

4.3CVSS5.5AI score0.03466EPSS
Exploits11References2Affected Software1
Cvelist
Cvelist
added 2019/12/31 4:18 p.m.24 views

CVE-2019-9553

Bolt 3.6.4 has XSS via the slug, teaser, or title parameter to editcontent/pages, a related issue to CVE-2017-11128 and CVE-2018-19933...

5.9AI score0.01751EPSS
Exploits5References2
0day.today
0day.today
added 2018/12/19 12:0 a.m.72 views

Bolt CMS < 3.6.2 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Bolt CMS https://github.com/rdincel1/Bolt-CMS-3.6.2---Cross-Site-Scripting/raw/master/bolt-v3.6.2.zip Affected Version: alert"Raif" Description Bolt CMS 3.6.2 allows XSS via text input click preview button as demonstrated by the...

0.03466EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/12/19 12:0 a.m.45 views

Bolt CMS &lt; 3.6.2 - Cross-Site Scripting

Exploit Title: Bolt CMS https://github.com/rdincel1/Bolt-CMS-3.6.2---Cross-Site-Scripting/raw/master/bolt-v3.6.2.zip Affected Version: alert"Raif" Description Bolt CMS 3.6.2 allows XSS via text input click preview button as demonstrated by the Title field of a Configured and New Entry. PoC Video:...

6.1CVSS6.5AI score0.03466EPSS
Exploits5
Cvelist
Cvelist
added 2018/12/17 6:0 p.m.26 views

CVE-2018-19933

Bolt CMS 3.6.2 allows XSS via text input click preview button as demonstrated by the Title field of a Configured and New Entry...

6.3AI score0.03466EPSS
Exploits5References3
CVE
CVE
added 2018/12/17 6:0 p.m.68 views

CVE-2018-19933

Bolt CMS before 3.6.2 is vulnerable to cross-site scripting via the text input click preview button, demonstrated by the Title field of a configured or new entry. Related advisories (GHSA-2G23-QMMP-FVMR, OSV entries) link this XSS to Bolt 3.6.4 and earlier references, including a public exploit/d...

6.1CVSS5.8AI score0.03466EPSS
Exploits5References3Affected Software1
Rows per page
Query Builder