2 matches found
CVE-2022-27062
AeroCMS v0.0.1 was discovered to contain a stored cross-site scripting XSS vulnerability via addpost.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Post Title text field...
CVE-2022-27062
CVE-2022-27062 affects AeroCMS v0.0.1. The vulnerability is a stored cross-site scripting (XSS) in the Post Title field exposed via add_post.php, allowing an attacker to inject a crafted payload that executes arbitrary web scripts/HTML when rendered by the browser. The available sources consisten...