CVE-2020-36498

Macrob7 Macs Framework Content Management System - 1.14f contains a cross-site scripting XSS vulnerability in the account reset function, which allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the e-mail input field...

CVE-2020-23047

Macrob7 Macs Framework Content Management System - 1.14f was discovered to contain a cross-site scripting XSS vulnerability in the search input field of the search module...

CVE-2023-43154

In Macrob7 Macs Framework Content Management System CMS 1.1.4f, loose comparison in "isValidLogin" function during login attempt results in PHP type confusion vulnerability that leads to authentication bypass and takeover of the administrator account...

CVE-2023-43154

CVE-2023-43154 affects Macrob7 Macs Framework CMS v1.1.4f. The root cause is a PHP type confusion in a loose comparison (isValidLogin()) that compares username and password with == instead of ===, allowing authentication bypass and administrator takeover. The vulnerability arises during login whe...

Macrob7 Macs Framework Cms Security Vulnerability

Macrob7 Macs Framework Cms is an open source Cms framework by the individual developer Macdonald Terrence Robinson. A security vulnerability exists in Macrob7 Macs Framework Cms v1.1.4f CMS, which stems from a type confusion vulnerability in the isValidLogin function. The vulnerability can be...

Exploit for Type Confusion in Macs_Cms_Project Macs_Cms

CVE-2023-43154 - Macs Framework v1.1.4f CMS Type Confusion Vul...

CVE-2020-23047

Macrob7 Macs Framework Content Management System - 1.14f was discovered to contain a cross-site scripting XSS vulnerability in the search input field of the search module...

CVE-2020-23047

Macrob7 Macs Framework Content Management System - 1.14f was discovered to contain a cross-site scripting XSS vulnerability in the search input field of the search module...

CVE-2020-23045

Macrob7 Macs Framework Content Management System, version 1.14f, is reported to contain an SQL injection vulnerability in the editRole and deletUser modules triggered by the roleId parameter. The root cause is improper handling of the roleId input leading to SQL injection. No explicit remediation...

CVE-2020-23047

Macrob7 Macs Framework Content Management System - 1.14f was discovered to contain a cross-site scripting XSS vulnerability in the search input field of the search module...

CVE-2020-23047

CVE-2020-23047 corresponds to a cross-site scripting (XSS) vulnerability in the Macrob7 Macs Framework Content Management System (CMS) version 1.14f, specifically in the search input field of the search module. Multiple connected sources confirm the issue and identify the affected product and ver...

Macrob7 Macs Framework Cms SQL注入漏洞

Macrob7 Macs Framework Cms is an open source Cms framework from the personal developer Macdonald Terrence Robinson. version 1.14 of the Macrob7 Macs Framework Content Management System is vulnerable to SQL injection, which allows attackers to SQL injection can be performed via the "roleId"...

Macrob7 Macs Framework Content Management System 跨站脚本漏洞

Zenar Content Management System is an open source content management system CMS from the Zenar team. A cross-site scripting vulnerability exists in Macrob7 Macs Framework Content Management System version 1.14, which can be exploited by an attacker via the search input field of the search module...

Macs Framework 1.14f CMS - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Title: Macs Framework 1.14f CMS - Persistent Cross-Site Scripting Software Link: https://sourceforge.net/projects/macs-framework/files/latest/download CVE: N/A Document Title: =============== Macs Framework v1.14f CMS - Multiple Web...

Macs Framework 1.14f Cross Site Scripting / SQL Injection

Document Title: =============== Macs Framework v1.14f CMS - Multiple Web Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2206 Release Date: ============= 2020-04-14 Vulnerability Laboratory ID VL-ID: ====================================...

Macs Framework 1.14f CMS - Persistent Cross-Site Scripting

Title: Macs Framework 1.14f CMS - Persistent Cross-Site Scripting Author: Vulnerability Laboratory Date: 2020-04-15 Software Link: https://sourceforge.net/projects/macs-framework/files/latest/download CVE: N/A Document Title: =============== Macs Framework v1.14f CMS - Multiple Web Vulnerabilitie...

Macs Framework v1.14f CMS - Multiple Web Vulnerabilities

Document Title: =============== Macs Framework v1.14f CMS - Multiple Web Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2206 Release Date: ============= 2020-04-13 Vulnerability Laboratory ID VL-ID: ====================================...

Macs CMS 1.1.4 - Cross-Site Scripting / Cross-Site Request Forgery

Date: Sun 11 Jul 2010 11:53:35 AM EEST Vendor: http://macs-framework.sourceforge.net/ Download: http://sourceforge.net/projects/macs-framework/ --- -= CSRF PoC 1 - Create Admin User =- Macs CMS 1.1.4 Multiple Vulnerabilities XSS/CSRF - Create Admin User -= CSRF PoC 2 - Delete User =- -= XSS PoC =...