5 matches found
CVE-2020-20128
LaraCMS v1.0.1 transmits sensitive information in cleartext which can be intercepted by attackers...
CVE-2020-20128
LaraCMS v1.0.1 transmits sensitive information in cleartext which can be intercepted by attackers...
CVE-2020-20128
LaraCMS v1.0.1 transmits sensitive information in cleartext which can be intercepted by attackers...
Information disclosure
LaraCMS v1.0.1 transmits sensitive information in cleartext which can be intercepted by attackers...
Cross site scripting
LaraCMS v1.0.1 contains a stored cross-site scripting XSS vulnerability which allows atackers to execute arbitrary web scripts or HTML via a crafted payload in the page management module...