Lucene search
K

172 matches found

Prion
Prion
added 2018/10/02 6:29 p.m.16 views

Cross site scripting

In the 5.4.0 version of the Fork CMS software, HTML Injection and Stored XSS vulnerabilities were discovered via the /backend/ajax URI...

4.3CVSS6.4AI score0.01009EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2018/10/02 6:0 p.m.37 views

CVE-2018-17595

In the 5.4.0 version of the Fork CMS software, HTML Injection and Stored XSS vulnerabilities were discovered via the /backend/ajax URI...

6.4AI score0.01009EPSS
Exploits2References1
CVE
CVE
added 2018/10/02 6:0 p.m.49 views

CVE-2018-17595

CVE-2018-17595 affects Fork CMS 5.4.0, where HTML Injection and Stored XSS are triggered through the /backend/ajax URI. The available connected sources confirm the vulnerability in the specified version and describe the attack class as HTML injection leading to stored XSS in Fork CMS’s backend AJ...

6.1CVSS6.3AI score0.01009EPSS
Exploits2References1Affected Software1
Veracode
Veracode
added 2018/10/01 2:13 a.m.17 views

Cross-Site Scripting (XSS)

Fork CMS is vulnerable to cross-site scripting. A remote attacker is able to inject arbitrary Javascript into a victim's browser to steal session cookies or perform unwanted actions on behalf of the user via /backend/ajax...

6.1CVSS6.1AI score0.01009EPSS
Exploits2References2Affected Software1
0day.today
0day.today
added 2018/10/01 12:0 a.m.23 views

Fork CMS 5.4.0 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Fork CMS 5.4.0 - Cross-Site Scripting Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.fork-cms.com/ Software Link : https://github.com/forkcms/forkcms Software : Fork 5.4.0 Product Version: 5.4.0 Vulernability Type ...

Exploits0
Exploit DB
Exploit DB
added 2018/10/01 12:0 a.m.20 views

Fork CMS 5.4.0 - Cross-Site Scripting

Exploit Title: Fork CMS 5.4.0 - Cross-Site Scripting Date: 2018-09-26 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.fork-cms.com/ Software Link : https://github.com/forkcms/forkcms Software : Fork 5.4.0 Product Version: 5.4.0 Vulernability Type : Code Injection Vulenrability : HTML...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2018/10/01 12:0 a.m.12 views

Fork CMS 5.4.0 - Cross-Site Scripting

Fork CMS 5.4.0 - Cross-Site Scripting Exploit Title: Fork CMS 5.4.0 - Cross-Site Scripting Date: 2018-09-26 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.fork-cms.com/ Software Link : https://github.com/forkcms/forkcms Software : Fork 5.4.0 Product Version: 5.4.0 Vulernability Type...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2018/10/01 12:0 a.m.32 views

Fork CMS 5.4.0 Cross Site Scripting / HTML Injection

Exploit Title: Fork CMS 5.4.0 - HTML Injection and Stored XSS Date: 2018-09-26 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.fork-cms.com/ Software Link : https://github.com/forkcms/forkcms Software : Fork 5.4.0 Product Version: 5.4.0 Vulernability Type : Code Injection Vulenrabili...

0.01009EPSS
Exploits2
Packet Storm
Packet Storm
added 2018/09/29 12:0 a.m.47 views

Fork CMS 5.4.0 Cross Site Scripting / HTML Injection

Exploit Title: Fork CMS 5.4.0 - HTML Injection and Stored XSS Date: 2018-09-26 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.fork-cms.com/ Software Link : https://github.com/forkcms/forkcms Software : Fork 5.4.0 Product Version: 5.4.0 Vulernability Type : Code Injection Vulenrabili...

0.01009EPSS
Exploits2
CNVD
CNVD
added 2018/01/05 12:0 a.m.5 views

Fork CMS title parameter cross-site scripting vulnerability

Fork CMS is an open source content management system CMS developed using PHP. The system contains blogs , questions and answers , forms and other modules . A cross-site scripting vulnerability exists in Fork CMS version 5.0.7. The vulnerability can be exploited to inject arbitrary web script or...

5.4CVSS6AI score0.00537EPSS
Exploits1References1
NVD
NVD
added 2018/01/04 7:29 p.m.18 views

CVE-2018-5215

Fork CMS 5.0.7 has XSS in /private/en/pages/edit via the title parameter...

5.4CVSS5.3AI score0.00537EPSS
Exploits1References1
Prion
Prion
added 2018/01/04 7:29 p.m.12 views

Design/Logic Flaw

Fork CMS 5.0.7 has XSS in /private/en/pages/edit via the title parameter...

3.5CVSS5.2AI score0.00537EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2018/01/04 7:29 p.m.13 views

CVE-2018-5215

Fork CMS 5.0.7 has XSS in /private/en/pages/edit via the title parameter...

5.4CVSS6.2AI score
Exploits0References1
Cvelist
Cvelist
added 2018/01/04 7:0 p.m.18 views

CVE-2018-5215

Fork CMS 5.0.7 has XSS in /private/en/pages/edit via the title parameter...

5.3AI score0.00537EPSS
Exploits1References1
CVE
CVE
added 2018/01/04 7:0 p.m.53 views

CVE-2018-5215

Fork CMS 5.0.7 is affected by an XSS vulnerability in the title parameter of the /private/en/pages/edit endpoint. The root cause is a cross-site scripting flaw that allows injection via the title field, as documented across multiple sources (CVE-2018-5215 and related advisories). Exploitation det...

5.4CVSS5.2AI score0.00537EPSS
Exploits1References1Affected Software1
securityvulns
securityvulns
added 2015/02/23 12:0 a.m.74 views

[CVE-2015-1467] Fork CMS - SQL Injection in Version 3.8.5

CVE-2015-1467 Fork CMS - SQL Injection in Version 3.8.5 ---------------------------------------------------------------- Product Information: Software: Fork CMS Tested Version: 3.8.5, released on Wednesday 14 January 2015 Vulnerability Type: SQL Injection CWE-89 Download link to tested version:...

7.5CVSS7.2AI score0.02395EPSS
Exploits5
exploitpack
exploitpack
added 2015/02/09 12:0 a.m.83 views

Fork CMS 3.8.5 - SQL Injection

Fork CMS 3.8.5 - SQL Injection CVE-2015-1467 Fork CMS - SQL Injection in Version 3.8.5 ---------------------------------------------------------------- Product Information: Software: Fork CMS Tested Version: 3.8.5, released on Wednesday 14 January 2015 Vulnerability Type: SQL Injection CWE-89...

7.5CVSS0.2AI score0.02395EPSS
Exploits5
Exploit DB
Exploit DB
added 2015/02/09 12:0 a.m.65 views

Fork CMS 3.8.5 - SQL Injection

CVE-2015-1467 Fork CMS - SQL Injection in Version 3.8.5 ---------------------------------------------------------------- Product Information: Software: Fork CMS Tested Version: 3.8.5, released on Wednesday 14 January 2015 Vulnerability Type: SQL Injection CWE-89 Download link to tested version:...

7.5CVSS6.6AI score0.02395EPSS
Exploits5
NVD
NVD
added 2015/02/06 3:59 p.m.33 views

CVE-2015-1467

Multiple SQL injection vulnerabilities in Translations in Fork CMS before 3.8.6 allow remote authenticated users to execute arbitrary SQL commands via the 1 language or 2 type parameter to private/en/locale/index...

7.5CVSS8AI score0.02395EPSS
Exploits5References4
Prion
Prion
added 2015/02/06 3:59 p.m.24 views

Sql injection

Multiple SQL injection vulnerabilities in Translations in Fork CMS before 3.8.6 allow remote authenticated users to execute arbitrary SQL commands via the 1 language or 2 type parameter to private/en/locale/index...

7.5CVSS8.7AI score0.02395EPSS
Exploits5References4Affected Software1
Rows per page
Query Builder