Lucene search
K

41 matches found

NVD
NVD
added 2019/02/11 2:29 a.m.18 views

CVE-2018-20774

Frog CMS 0.9.5 has XSS via the admin/?/layout/edit/1 Body field...

5.4CVSS5.3AI score0.00637EPSS
Exploits1References1
NVD
NVD
added 2019/02/11 2:29 a.m.13 views

CVE-2018-20776

Frog CMS 0.9.5 provides a directory listing for a /public request...

7.5CVSS7.6AI score0.01514EPSS
Exploits1References1
NVD
NVD
added 2019/02/11 2:29 a.m.18 views

CVE-2018-20778

admin/?/plugin/filemanager in Frog CMS 0.9.5 allows XSS by creating a new file containing a crafted attribute of an IMG element...

6.1CVSS6AI score0.00826EPSS
Exploits1References1
Prion
Prion
added 2019/02/11 2:29 a.m.23 views

Cross site scripting

admin/?/plugin/filemanager in Frog CMS 0.9.5 allows XSS by creating a new file containing a crafted attribute of an IMG element...

4.3CVSS5.9AI score0.00826EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/02/11 2:0 a.m.20 views

CVE-2018-20774

Frog CMS 0.9.5 has XSS via the admin/?/layout/edit/1 Body field...

5.3AI score0.00637EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/02/11 2:0 a.m.22 views

CVE-2018-20777

Frog CMS 0.9.5 has XSS via the admin/?/snippet/edit/1 Body field...

5.3AI score0.00637EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/02/11 2:0 a.m.27 views

CVE-2018-20773

Frog CMS 0.9.5 allows PHP code execution by visiting admin/?/page/edit/1 and inserting additional ?php lines...

7.4AI score0.02107EPSS
Exploits1References1
CVE
CVE
added 2019/02/11 2:0 a.m.41 views

CVE-2018-20772

CVE-2018-20772 affects Frog CMS 0.9.5. The vulnerability allows PHP code execution via the PHP opening tag in the request to the URI admin/?/layout/edit/1, indicating a code-injection path in that administration handler. The root cause is improper handling of PHP code within that endpoint, enabli...

7.2CVSS7.3AI score0.02107EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2019/01/12 2:29 a.m.4 views

CVE-2019-6243

Frog CMS 0.9.5 allows XSS via the forgot password page aka the /admin/?/login/forgot URI...

6.1CVSS6.3AI score0.00675EPSS
Exploits1References1
NVD
NVD
added 2019/01/12 2:29 a.m.13 views

CVE-2019-6243

Frog CMS 0.9.5 allows XSS via the forgot password page aka the /admin/?/login/forgot URI...

6.1CVSS6.1AI score0.00675EPSS
Exploits1References1
Prion
Prion
added 2019/01/09 5:29 p.m.13 views

Design/Logic Flaw

Frog CMS 0.9.5 has XSS in the admin/?/page/edit/1 body field...

3.5CVSS4.9AI score0.00583EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/01/09 5:0 p.m.21 views

CVE-2018-20680

Frog CMS 0.9.5 has XSS in the admin/?/page/edit/1 body field...

5AI score0.00583EPSS
Exploits1References1
0day.today
0day.today
added 2019/01/02 12:0 a.m.38 views

Frog CMS 0.9.5 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Frog CMS 0.9.5 - Cross-Site Scripting Exploit Author:WangDudu Vendor Homepage: https://github.com/philippe/FrogCMS Software Link: https://github.com/philippe/FrogCMS Version:0.9.5 CVE :CVE-2018-20448 The parameter under...

3.5CVSS0.3AI score0.01677EPSS
Exploits5
Packet Storm
Packet Storm
added 2019/01/02 12:0 a.m.34 views

Frog CMS 0.9.5 Cross Site Scripting

Exploit Title: Frog CMS 0.9.5 - Cross-Site Scripting Date: 2018-12-25 Exploit Author:WangDudu Vendor Homepage: https://github.com/philippe/FrogCMS Software Link: https://github.com/philippe/FrogCMS Version:0.9.5 CVE :CVE-2018-20448 The parameter under /install/index.php is that the Database name...

3.5CVSS0.1AI score0.01677EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/01/02 12:0 a.m.45 views

Frog CMS 0.9.5 - Cross-Site Scripting

Exploit Title: Frog CMS 0.9.5 - Cross-Site Scripting Date: 2018-12-25 Exploit Author:WangDudu Vendor Homepage: https://github.com/philippe/FrogCMS Software Link: https://github.com/philippe/FrogCMS Version:0.9.5 CVE :CVE-2018-20448 The parameter under /install/index.php is that the Database name...

5.4CVSS5.5AI score0.01677EPSS
Exploits5
Prion
Prion
added 2018/12/25 4:29 p.m.13 views

Design/Logic Flaw

Frog CMS 0.9.5 has XSS via the Database name field to the /install/index.php URI...

3.5CVSS5.2AI score0.01677EPSS
Exploits5References2Affected Software1
Prion
Prion
added 2018/09/04 4:29 a.m.13 views

Cross site request forgery (csrf)

Frog CMS 0.9.5 has admin/?/user/edit/1 CSRF...

6.8CVSS8.7AI score0.00709EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2018/09/04 4:0 a.m.16 views

CVE-2018-16447

Frog CMS 0.9.5 has admin/?/user/edit/1 CSRF...

8.8AI score0.00709EPSS
Exploits1References2
Prion
Prion
added 2018/09/03 12:29 a.m.17 views

Cross site scripting

Frog CMS 0.9.5 has stored XSS via /admin/?/plugin/comment/settings...

3.5CVSS4.8AI score0.0064EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/09/03 12:0 a.m.13 views

CVE-2018-16374

Frog CMS 0.9.5 has stored XSS via /admin/?/plugin/comment/settings...

4.9AI score0.0064EPSS
Exploits1References1
Rows per page
Query Builder