4 matches found
Magnolia CMS 6.2.19 - Stored Cross-Site Scripting (XSS)
Exploit Title: Magnolia CMS 6.2.19 - Stored Cross-Site Scripting XSS Date: 08/05/2022 Exploit Author: Giulio Garzia 'Ozozuz' Vendor Homepage: https://www.magnolia-cms.com/ Software Link:...
CVE-2022-33098
Magnolia CMS v6.2.19 was discovered to contain a cross-site scripting XSS vulnerability via the Edit Contact function. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted SVG document, with JavaScript, for a profile picture...
CVE-2022-33098
CVE-2022-33098 affects Magnolia CMS 6.2.19. The vulnerability is a stored cross-site scripting (XSS) introduced via the Edit Contact function. A user with rights to upload a profile resource can craft an SVG containing malicious JavaScript, which is then executed when others view the resource. Pu...
Magnolia CMS 6.2.19 Cross Site Scripting Vulnerability
Exploit Title: Magnolia CMS = 6.2.19 - Stored Cross-Site Scripting XSS Exploit Author: Giulio Garzia 'Ozozuz' Vendor Homepage: https://www.magnolia-cms.com/ Software Link:...