4 matches found
CVE-2024-2245
Cross-Site Scripting vulnerability in moziloCMS version 2.0. By sending a POST request to the '/install.php' endpoint, a JavaScript payload could be executed in the 'username' parameter...
CVE-2024-2245 Cross-Site Scripting vulnerability in moziloCMS
Cross-Site Scripting vulnerability in moziloCMS version 2.0. By sending a POST request to the '/install.php' endpoint, a JavaScript payload could be executed in the 'username' parameter...
CVE-2024-2245 Cross-Site Scripting vulnerability in moziloCMS
Cross-Site Scripting vulnerability in moziloCMS version 2.0. By sending a POST request to the '/install.php' endpoint, a JavaScript payload could be executed in the 'username' parameter...
CVE-2024-2245
moziloCMS 2.0 is affected by CVE-2024-2245: a Cross-Site Scripting flaw allows a JavaScript payload to be executed by sending a POST to /install.php, targeting the username parameter. This is supported by multiple connected sources describing the same vulnerability; exploitation status and fixes ...