CVE-2023-3641

A vulnerability has been found in khodakhah NodCMS 3.4.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /en/blog-comment-4 of the component POST Request Handler. The manipulation of the argument commentname/commentcontent leads to cross site...

CVE-2023-3641

A vulnerability has been found in khodakhah NodCMS 3.4.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /en/blog-comment-4 of the component POST Request Handler. The manipulation of the argument commentname/commentcontent leads to cross site...

Cross site scripting

A vulnerability has been found in khodakhah NodCMS 3.4.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /en/blog-comment-4 of the component POST Request Handler. The manipulation of the argument commentname/commentcontent leads to cross site...

CVE-2023-3641

The CVE-2023-3641 entry concerns khodakhah NodCMS 3.4.1. The vulnerable component is the POST Request Handler at /en/blog-comment-4, where manipulating the parameters comment_name and comment_content leads to Cross-Site Scripting. The attack can be launched remotely. Public documents do not provi...

CVE-2023-3641 khodakhah NodCMS POST Request blog-comment-4 cross site scripting

A vulnerability has been found in khodakhah NodCMS 3.4.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /en/blog-comment-4 of the component POST Request Handler. The manipulation of the argument commentname/commentcontent leads to cross site...

Cross-site Scripting (XSS)

khodakhah/nodcms is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to improper validations in the contact forms address element, which allows an admin authenticated attacker to inject and execute arbitrary JavaScript into the browser...

PT-2023-11558 · Khodakhah · Nodcms

Name of the Vulnerable Software and Affected Versions: khodakhah NodCMS version 3.0 Description: The issue allows a remote attacker to execute arbitrary code and gain access to sensitive information via a crafted script to the address parameter. This can be done by an attacker with administrative...

CVE-2020-20697

Cross Site Scripting vulnerability in khodakhah NodCMS v.3.0 allows a remote attacker to execute arbitrary code and gain access to senstivie information via a crafted script to the address parameter...

CVE-2020-20697

CVE-2020-20697 affects the NodCMS v3.0 product, with a Cross-Site Scripting vulnerability in the address parameter that can allow an attacker to execute arbitrary code and access sensitive information. Several connected sources (e.g., Red Hat, CNVD, GHSA, OSV) describe the issue as XSS with poten...