2 matches found
CVE-2022-27885
Maccms v10 was discovered to contain multiple reflected cross-site scripting XSS vulnerabilities in /admin.php/admin/website/data.html via the select and input parameters...
CVE-2022-27885
CVE-2022-27885 affects Maccms v10 with multiple reflected XSS vulnerabilities in /admin.php/admin/website/data.html, exploitable via select and input parameters due to insufficient output filtering. Root cause described as lack of user-supplied data validation and filtering, enabling JavaScript i...