📄 Anchor CMS 0.12.7 Cross Site Scripting

Anchor CMS version 0.12.7 suffers from a persistent cross site scripting vulnerability. Anchor CMS v0.12.7 - Stored XSS CVE-2025-46041 Anchor CMS v0.12.7 is vulnerable to a Stored Cross-Site Scripting XSS vulnerability in the description field of the /admin/pages/add interface. CVE ID...

Cross-site Scripting (XSS)

Overview anchorcms/anchor-cms is a lightweight blog CMS for PHP. Affected versions of this package are vulnerable to Cross-site Scripting XSS through the "page description" field in the page creation interface /admin/pages/add. An attacker can execute arbitrary JavaScript code by injecting...

CVE-2025-29018

A Stored Cross-Site Scripting XSS vulnerability exists in the name parameter of pagesaddacctype.php in Code Astro Internet Banking System 2.0.0...

GHSA-6WC4-V4V5-3M82 Subrion CMS Stored Cross-site Scripting (XSS)

core/admin/pages/add/ in Subrion CMS 4.2.1 has XSS via the titlesen parameter...

Fork CMS 跨站脚本漏洞

Fork is an easy to use, open source CMS using Symfony components. A persistent cross-site scripting vulnerability exists in Fork CMS version 5.8.2. The vulnerability can be exploited to inject arbitrary Javascript code via the navigationtitle and title parameters in /private/en/pages/add...

Insky CMS 006-0111 - Multiple Remote File Inclusions

\|/// \ - - // @ @ ----oOOo---oOOo-------------------------------------------------- Insky CMS v006-0111 Multiple Remote File Include Vulnerability Script: http://code.google.com/p/insky/downloads/list Author: mat Mail: [email protected]...