48 matches found
CVE-2023-3641 khodakhah NodCMS POST Request blog-comment-4 cross site scripting
A vulnerability has been found in khodakhah NodCMS 3.4.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /en/blog-comment-4 of the component POST Request Handler. The manipulation of the argument commentname/commentcontent leads to cross site...
PT-2023-25568 · Khodakhah · Nodcms
Name of the Vulnerable Software and Affected Versions: khodakhah NodCMS version 3.4.1 Description: A vulnerability has been found in the component POST Request Handler of the file /en/blog-comment-4. The manipulation of the comment name and comment content arguments leads to cross site scripting...
NodCMS 跨站脚本漏洞
NodCMS is a free, multi-language, simple and powerful CMS based on CodeIgniter4 by Mojtaba Individual Developers. A cross-site scripting vulnerability exists in khodakhah NodCMS version 3.4.1, which stems from the parameter commentname/commentcontent in the file /en/blog-comment-4 that leads to...
Cross-site Scripting (XSS)
khodakhah/nodcms is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to improper validations in the contact forms address element, which allows an admin authenticated attacker to inject and execute arbitrary JavaScript into the browser...
NodCMS 3.4.1 Cross Site Scripting
┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...
NodCMS Cross-Site Scripting Vulnerability
NodCMS is a free, multilingual, simple and powerful CMS based on CodeIgniter4. A cross-site scripting XSS vulnerability exists in NodCMS version 3.0. An attacker can exploit this vulnerability to execute arbitrary code and access sensitive information...
GHSA-7XQX-XWG9-JX34 NodCMS Cross Site Scripting vulnerability
Cross Site Scripting vulnerability in khodakhah NodCMS v.3.0 allows an attacker with administrative privileges to execute arbitrary code and gain access to sensitive information via a crafted script to the address parameter...
NodCMS Cross Site Scripting vulnerability
Cross Site Scripting vulnerability in khodakhah NodCMS v.3.0 allows an attacker with administrative privileges to execute arbitrary code and gain access to sensitive information via a crafted script to the address parameter...
CVE-2020-20697
Cross Site Scripting vulnerability in khodakhah NodCMS v.3.0 allows a remote attacker to execute arbitrary code and gain access to senstivie information via a crafted script to the address parameter...
CVE-2020-20697
Cross Site Scripting vulnerability in khodakhah NodCMS v.3.0 allows a remote attacker to execute arbitrary code and gain access to senstivie information via a crafted script to the address parameter...
Cross site scripting
Cross Site Scripting vulnerability in khodakhah NodCMS v.3.0 allows a remote attacker to execute arbitrary code and gain access to senstivie information via a crafted script to the address parameter...
CVE-2020-20697
CVE-2020-20697 affects the NodCMS v3.0 product, with a Cross-Site Scripting vulnerability in the address parameter that can allow an attacker to execute arbitrary code and access sensitive information. Several connected sources (e.g., Red Hat, CNVD, GHSA, OSV) describe the issue as XSS with poten...
CVE-2020-20697
Cross Site Scripting vulnerability in khodakhah NodCMS v.3.0 allows a remote attacker to execute arbitrary code and gain access to senstivie information via a crafted script to the address parameter...
PT-2023-11558 · Khodakhah · Nodcms
Name of the Vulnerable Software and Affected Versions: khodakhah NodCMS version 3.0 Description: The issue allows a remote attacker to execute arbitrary code and gain access to sensitive information via a crafted script to the address parameter. This can be done by an attacker with administrative...
CVE-2020-20697
Cross Site Scripting vulnerability in khodakhah NodCMS v.3.0 allows a remote attacker to execute arbitrary code and gain access to senstivie information via a crafted script to the address parameter...
NodCMS 跨站脚本漏洞
NodCMS is a free, multilingual, simple and powerful CMS based on CodeIgniter4. A cross-site scripting XSS vulnerability exists in NodCMS version 3.0. An attacker can exploit this vulnerability to execute arbitrary code and access sensitive information...
NodCMS edit_lang_file PHP Code Execution
An arbitrary PHP code execution vulnerability exists in NodCMS . The vulnerability is due to insufficient validation of user-supplied input. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
NodCMS Installer Client-Side Cross Site Scripting
===================================================== Exploit Title : NodCMS Installer - Multiples Cross Site Web Vulnerability Date Discovered : 2016-11-10 Affected Products: NodCMS Installer - Content Management System Exploitation Technique: Remote Severity Level: Low Tested OS : Windows 10...
NodCMS Cross Site Scripting
Exploit Title : nodcms cross site scripting Author : Ashiyane Digital Security Team Date : 29/10/2016 Type : webapps Platform : PHP Vendor Homepage : http://www.nodcms.com/en Software link : https://github.com/khodakhah/nodcms/archive/master.zip version : All version Path Of Vulnerability :...
NodCMS PHP Code Execution
!-- HTTP Request http://localhost/nodcms-master/admin/editlangfile/1/en POST /nodcms-master/admin/editlangfile/1/en HTTP/1.1 Host: localhost User-Agent: Mozilla/5.0 Windows NT 10.0; rv:49.0 Gecko/20100101 Firefox/49.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8...