Lucene search
+L

5 matches found

0day.today
0day.today
added 2021/04/07 12:0 a.m.51 views

Composr CMS 10.0.36 - Cross Site Scripting Vulnerability

Exploit Title: Composr CMS 10.0.36 - Cross Site Scripting Exploit Author: Orion Hridoy Vendor Homepage: https://compo.sr/ Software Link: https://compo.sr/download.htm Version: 10.0.36 Tested on: Windows/Linux CVE : CVE-2021-30150 Vulnerable Endpoint:...

6.1CVSS6.3AI score0.02775EPSS
Exploits4
Packet Storm
Packet Storm
added 2021/04/07 12:0 a.m.247 views

Composr CMS 10.0.36 Cross Site Scripting

Exploit Title: Composr CMS 10.0.36 - Cross Site Scripting Date: 04/06/2021 Exploit Author: Orion Hridoy Vendor Homepage: https://compo.sr/ Software Link: https://compo.sr/download.htm Version: 10.0.36 Tested on: Windows/Linux CVE : CVE-2021-30150 Vulnerable Endpoint:...

6.3AI score0.02775EPSS
Exploits4
Exploit DB
Exploit DB
added 2021/04/07 12:0 a.m.400 views

Composr CMS 10.0.36 - Cross Site Scripting

Exploit Title: Composr CMS 10.0.36 - Cross Site Scripting Date: 04/06/2021 Exploit Author: Orion Hridoy Vendor Homepage: https://compo.sr/ Software Link: https://compo.sr/download.htm Version: 10.0.36 Tested on: Windows/Linux CVE : CVE-2021-30150 Vulnerable Endpoint:...

6.1CVSS6.3AI score0.02775EPSS
Exploits4
OSV
OSV
added 2021/04/06 6:15 a.m.13 views

CVE-2021-30150

Composr 10.0.36 allows XSS in an XML script...

6.1CVSS6AI score
Exploits0References2
CVE
CVE
added 2021/04/06 5:40 a.m.107 views

CVE-2021-30150

CVE-2021-30150 affects Composr 10.0.36, with a stored/reflected XSS in an XML script via the vulnerable endpoint data/ajax_tree.php?hook=choose_gallery... where a crafted XML/HTML-like payload can execute script code in the context of the page. Public writeups (PacketStorm exploit article and Exp...

6.1CVSS5.9AI score0.02775EPSS
Exploits4References2Affected Software1
Rows per page
Query Builder