Lucene search
+L

5 matches found

Packet Storm
Packet Storm
added 2022/04/07 12:0 a.m.292 views

minewebcms 1.15.2 Cross Site Scripting

Exploit Title: minewebcms 1.15.2 - Cross-site Scripting XSS Google Dork: NA Date: 02/20/2022 Exploit Author: Chetanya Sharma @AggressiveUser Vendor Homepage: https://mineweb.org/ Software Link: https://github.com/mineweb/minewebcms Version: 1.15.2 Tested on: KALI OS CVE : CVE-2022-1163...

6.8CVSS5.4AI score0.03506EPSS
Exploits4
ATTACKERKB
ATTACKERKB
added 2022/03/30 7:15 a.m.5 views

CVE-2022-1163

Cross-site Scripting XSS - Stored in GitHub repository mineweb/minewebcms prior to next...

6.8CVSS6.2AI score0.03506EPSS
Exploits4References5
Cvelist
Cvelist
added 2022/03/30 6:45 a.m.34 views

CVE-2022-1163 Cross-site Scripting (XSS) - Stored in mineweb/minewebcms

Cross-site Scripting XSS - Stored in GitHub repository mineweb/minewebcms prior to next...

6.8CVSS5.2AI score0.03506EPSS
Exploits4References4
Huntr
Huntr
added 2021/09/15 9:14 a.m.11 views

Cross-site Scripting (XSS) - Stored in mineweb/minewebcms

Description A malicious actor is able to add new Notification with a malicious payload, and upon the user receives the notification, the malicious payload is being executed. Proof of Concept - 1; Log in with any user, who is able to submit notifications - 2; Create a new notification at...

1.2AI score
Exploits0
Huntr
Huntr
added 2021/09/14 2:34 p.m.8 views

Cross-site Scripting (XSS) - Stored in mineweb/minewebcms

Description A malicious actor is able to add a malicious payload as a new Page Title, and after every time any administrative user visits the /admin/pages route, the XSS payload is executed. Proof of Concept 1;Create a new Page at the following route: /admin/pages/add. Use the following payload a...

0.9AI score
Exploits0
Rows per page
Query Builder