Cross-site Scripting (XSS)

Overview piranha is an a complete rewrite of Piranha CMS for .NET Core. Affected versions of this package are vulnerable to Cross-site Scripting XSS which allows an authenticated remote attacker to upload a crafted PDF file to /manager/media, which is then executed when a victim user opens or...

Cross-site Scripting (XSS)

Overview Piranha.Manager is a manager panel for Piranha CMS for AspNetCore. Affected versions of this package are vulnerable to Cross-site Scripting XSS which allows an authenticated remote attacker to upload a crafted PDF file to /manager/media, which is then executed when a victim user opens or...

Piranha CMS 安全漏洞

Piranha CMS is Piranha CMS open source used as a .Net5 friendly editor centric CMS. A security vulnerability exists in Piranha CMS version 11.1 that originates from a cross-site scripting vulnerability that allows an authenticated remote attacker to upload a crafted PDF file to /manager/media...

PT-2024-36510 · Unknown · Piranha Cms

Name of the Vulnerable Software and Affected Versions: Piranha CMS version 11.1 Description: A file upload functionality in Piranha CMS allows authenticated remote attackers to upload a crafted PDF file to "/manager/media". This PDF can contain malicious JavaScript code, which is executed when a...