Lucene search
K

307 matches found

NVD
NVD
added 2019/02/11 2:29 a.m.18 views

CVE-2018-20778

admin/?/plugin/filemanager in Frog CMS 0.9.5 allows XSS by creating a new file containing a crafted attribute of an IMG element...

6.1CVSS6AI score0.00826EPSS
Exploits1References1
OSV
OSV
added 2019/02/11 2:29 a.m.6 views

CVE-2018-20772

Frog CMS 0.9.5 allows PHP code execution via ?php to the admin/?/layout/edit/1 URI...

7.2CVSS6.2AI score0.02107EPSS
Exploits1References1
Prion
Prion
added 2019/02/11 2:29 a.m.12 views

Design/Logic Flaw

Frog CMS 0.9.5 allows PHP code execution by visiting admin/?/page/edit/1 and inserting additional ?php lines...

6.5CVSS7.3AI score0.02107EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2019/02/11 2:29 a.m.23 views

Cross site scripting

admin/?/plugin/filemanager in Frog CMS 0.9.5 allows XSS by creating a new file containing a crafted attribute of an IMG element...

4.3CVSS5.9AI score0.00826EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2019/02/11 2:29 a.m.10 views

Code injection

Frog CMS 0.9.5 allows PHP code execution via ?php to the admin/?/layout/edit/1 URI...

6.5CVSS7.3AI score0.02107EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2019/02/11 2:29 a.m.13 views

Design/Logic Flaw

Frog CMS 0.9.5 has XSS via the admin/?/layout/edit/1 Body field...

3.5CVSS5.2AI score0.00637EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2019/02/11 2:29 a.m.22 views

CVE-2018-20773

Frog CMS 0.9.5 allows PHP code execution by visiting admin/?/page/edit/1 and inserting additional ?php lines...

7.2CVSS7.4AI score0.02107EPSS
Exploits1References1
OSV
OSV
added 2019/02/11 2:29 a.m.6 views

CVE-2018-20773

Frog CMS 0.9.5 allows PHP code execution by visiting admin/?/page/edit/1 and inserting additional ?php lines...

7.2CVSS6.2AI score0.02107EPSS
Exploits1References1
Prion
Prion
added 2019/02/11 2:29 a.m.14 views

Code injection

admin/?/plugin/filemanager in Frog CMS 0.9.5 allows PHP code execution by creating a new .php file containing PHP code, and then visiting this file under the public/ URI...

6.5CVSS7.3AI score0.02107EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2019/02/11 2:29 a.m.20 views

CVE-2018-20772

Frog CMS 0.9.5 allows PHP code execution via ?php to the admin/?/layout/edit/1 URI...

7.2CVSS7.3AI score0.02107EPSS
Exploits1References1
Prion
Prion
added 2019/02/11 2:29 a.m.17 views

Design/Logic Flaw

Frog CMS 0.9.5 has XSS via the admin/?/snippet/edit/1 Body field...

3.5CVSS5.2AI score0.00637EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/02/11 2:0 a.m.20 views

CVE-2018-20776

Frog CMS 0.9.5 provides a directory listing for a /public request...

7.6AI score0.01514EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/02/11 2:0 a.m.16 views

CVE-2018-20775

admin/?/plugin/filemanager in Frog CMS 0.9.5 allows PHP code execution by creating a new .php file containing PHP code, and then visiting this file under the public/ URI...

7.3AI score0.02107EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/02/11 2:0 a.m.21 views

CVE-2018-20774

Frog CMS 0.9.5 has XSS via the admin/?/layout/edit/1 Body field...

5.3AI score0.00637EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/02/11 2:0 a.m.22 views

CVE-2018-20777

Frog CMS 0.9.5 has XSS via the admin/?/snippet/edit/1 Body field...

5.3AI score0.00637EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/02/11 2:0 a.m.23 views

CVE-2018-20772

Frog CMS 0.9.5 allows PHP code execution via ?php to the admin/?/layout/edit/1 URI...

7.3AI score0.02107EPSS
Exploits1References1
CVE
CVE
added 2019/02/11 2:0 a.m.40 views

CVE-2018-20776

Frog CMS 0.9.5 is affected by an information-disclosure issue where a /public request can return a directory listing. The vulnerability is described as a directory listing exposure in Frog CMS 0.9.5. Connected sources (NVD/CVE records and CNVD) confirm the component and issue, but do not provide ...

7.5CVSS7.5AI score0.01514EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/02/11 2:0 a.m.28 views

CVE-2018-20773

Frog CMS 0.9.5 allows PHP code execution by visiting admin/?/page/edit/1 and inserting additional ?php lines...

7.4AI score0.02107EPSS
Exploits1References1
CVE
CVE
added 2019/02/11 2:0 a.m.40 views

CVE-2018-20778

CVE-2018-20778 corresponds to Frog CMS 0.9.5 where the vulnerability exists in the admin/?/plugin/file_manager component. The issue arises from creating a new file containing a crafted attribute of an IMG element, enabling cross-site scripting (XSS). The affected software is Frog CMS 0.9.5; root ...

6.1CVSS5.9AI score0.00826EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/02/11 2:0 a.m.43 views

CVE-2018-20773

CVE-2018-20773 affects Frog CMS 0.9.5, where an attacker can achieve PHP code execution by visiting admin/?/page/edit/1 and injecting additional

7.2CVSS7.3AI score0.02107EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder