Lucene search
K

4 matches found

Exploit DB
Exploit DB
added 2018/02/19 12:0 a.m.52 views

October CMS < 1.0.431 - Cross-Site Scripting

​​ Exploit Title: October CMS Stored Code Injection Date: 16-02-2018 Exploit Author: Samrat Das Contact: http://twitter.com/SamratDas93 Website: https://securitywarrior9.blogspot.in/ Vendor Homepage: https://octobercms.com/ Version: All versions till date from 1.0.431 CVE : CVE- 2018-7198 Categor...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2018/02/19 12:0 a.m.71 views

October CMS Cross Site Scripting

Exploit Title: October CMS Stored Code Injection Date: 16-02-2018 Exploit Author: Samrat Das Contact: http://twitter.com/SamratDas93 Website: https://securitywarrior9.blogspot.in/ Vendor Homepage: https://octobercms.com/ Version: All versions till date from 1.0.431 CVE : CVE- 2018-7198 Category:...

6.5AI score0.02394EPSS
Exploits3
exploitpack
exploitpack
added 2018/02/19 12:0 a.m.26 views

October CMS 1.0.431 - Cross-Site Scripting

October CMS 1.0.431 - Cross-Site Scripting ​​ Exploit Title: October CMS Stored Code Injection Date: 16-02-2018 Exploit Author: Samrat Das Contact: http://twitter.com/SamratDas93 Website: https://securitywarrior9.blogspot.in/ Vendor Homepage: https://octobercms.com/ Version: All versions till dat...

6.8AI score
Exploits0
CVE
CVE
added 2018/02/18 3:0 a.m.53 views

CVE-2018-7198

CVE-2018-7198 affects October CMS up to version 1.0.431, specifically the RainLab Blog Plugin. It enables stored XSS by entering HTML on the Add Posts page, allowing a malicious payload to be stored and subsequently executed. The issue is documented across multiple sources (GHSA/OSV and exploit r...

6.1CVSS5.8AI score0.02394EPSS
Exploits3References2Affected Software1
Rows per page
Query Builder