CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Hoosk CMS is a lightweight content management system. Hoosk CMS v1.8.0 suffers from an arbitrary file upload vulnerability that stems from its /attachments component failing to validate uploaded files. An attacker can exploit the vulnerability to remotely execute code...

9.8CVSS7.3AI score0.00801EPSS

Exploits1References1

CNNVD•added 2022/11/16 12:0 a.m.•3 views

Hoosk CMS 代码问题漏洞

9.8CVSS7.2AI score0.00801EPSS

Exploits1References3

CNNVD•added 2022/04/25 12:0 a.m.•2 views

Hoosk CMS 跨站脚本漏洞

Hoosk CMS is a lightweight content management system. A cross-site scripting vulnerability exists in Hoosk CMS version 1.8.0, which can be exploited by an attacker to execute JavaScript code in a user's browser via an edit page...

6.1CVSS6.2AI score0.00223EPSS

Exploits1References3

CNVD•added 2022/04/01 12:0 a.m.•12 views

Hoosk has an unspecified vulnerability

Hoosk is a lightweight user-centric content management system CMS with a built-in Codelgniter for creating responsive websites. The system has a built-in Codelgniter for creating responsive websites. An unspecified vulnerability in /install/index.php in Hoosk version 1.8.0 stems from the program'...

5.5CVSS2AI score0.00272EPSS

Exploits1References1

Check Point Advisories•added 2020/10/07 12:0 a.m.•5 views

Hoosk CMS Remote Code Execution (CVE-2020-26041)

A remote code execution vulnerability exists in Hoosk CMS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS4.9AI score0.02647EPSS

Exploits1

Check Point Advisories•added 2020/10/07 12:0 a.m.•3 views

Hoosk CMS Cross Site Scripting (CVE-2020-26043)

A cross-site scripting vulnerability exists in Hoosk CMS. Successful exploitation of this vulnerability could allow remote attackers to inject arbitrary web script into the affected system...

4.3CVSS4AI score0.0024EPSS

Exploits1

Check Point Advisories•added 2020/10/07 12:0 a.m.•4 views

Hoosk CMS SQL Injection (CVE-2020-26042)

An SQL injection vulnerability exists in Hoosk CMS. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS4.6AI score0.00264EPSS

Exploits1