8 matches found
CVE-2018-10023
Catfish CMS V4.7.21 allows XSS via the pinglun parameter to cat/index/index/pinglun aka an authenticated comment...
EUVD-2018-2107
Malware in sbrugna...
CatfishCMS suffers from a cross-site scripting vulnerability
CatfishCMS is an open source content management system CMS written in PHP. A cross-site scripting vulnerability exists in Catfish CMS version V4.8.27, which can be exploited by a remote attacker to inject arbitrary Web script or HTML by sending the 'pinglun' parameter to the /index/Index/pinglun...
Catfish CMS Cross-Site Scripting Vulnerability
Catfish CMS is an open source content management system CMS written in PHP. A cross-site scripting vulnerability exists in comments in Catfish CMS version 4.7.21. A remote attacker can exploit this vulnerability by sending the 'pinglun' parameter to cat/index/index/pinglun to inject arbitrary web...
Cross site scripting
Catfish CMS V4.7.21 allows XSS via the pinglun parameter to cat/index/index/pinglun aka an authenticated comment...
CVE-2018-10023
Catfish CMS V4.7.21 allows XSS via the pinglun parameter to cat/index/index/pinglun aka an authenticated comment...
CVE-2018-10023
Catfish CMS V4.7.21 allows XSS via the pinglun parameter to cat/index/index/pinglun aka an authenticated comment...
CVE-2018-10023
Catfish CMS version 4.7.21 is reported to be vulnerable to a cross-site scripting (XSS) issue in the pinglun parameter of the path cat/index/index/pinglun (an authenticated comment). All connected sources (Red Hat, CNVD, CNVD CNVD-2018-08759, NVD, CVE records) corroborate that this XSS affects Ca...