6 matches found
CVE-2023-51252
PublicCMS 4.0 is vulnerable to Cross Site Scripting XSS. Because files can be uploaded and online preview function is provided, pdf files and html files containing malicious code are uploaded, an XSS popup window is realized through online viewing...
CVE-2020-21333
Cross Site Scripting XSS vulnerability in PublicCMS 4.0 to get an admin cookie when the Administrator reviews submit case...
CVE-2020-20915
SQL Injection vulnerability found in PublicCMS v.4.0 allows a remote attacker to execute arbitrary code via sql parameter of the the SysSiteAdminControl...
CVE-2020-21333
Cross Site Scripting XSS vulnerability in PublicCMS 4.0 to get an admin cookie when the Administrator reviews submit case...
Cross site scripting
Cross Site Scripting XSS vulnerability in PublicCMS 4.0 to get an admin cookie when the Administrator reviews submit case...
CVE-2020-21333
PublicCMS 4.0 is affected by a Cross Site Scripting (XSS) vulnerability that can allow an attacker to obtain an administrator cookie when an administrator reviews a submitted case. The issue is documented across multiple sources (NVD, RH, CVE listing, CNNVD, etc.) with the root cause described as...