Lucene search
+L

4 matches found

CNVD
CNVD
added 2022/11/23 12:0 a.m.39 views

WBCE CMS Results Header Field Cross-Site Scripting Vulnerability

WBCE CMS is an open source content management system CMS based on PHP and MySQL. WBCE CMS v1.5.4 and its previous versions exist cross-site scripting vulnerability, the vulnerability stems from the Search Settings module in the Results Header field of the user-supplied data lack of effective...

4.8CVSS4.8AI score0.00493EPSS
Exploits0References1
Prion
Prion
added 2022/11/21 3:15 p.m.12 views

Cross site scripting

A cross-site scripting XSS vulnerability in the Search Settings module of WBCE CMS v1.5.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Results Header field...

4.3CVSS4.9AI score0.00493EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2022/11/21 12:0 a.m.5 views

PT-2022-27369 · Wbce Cms · Wbce Cms

Name of the Vulnerable Software and Affected Versions: WBCE CMS version 1.5.4 Description: A cross-site scripting XSS issue in the Search Settings module allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Results Header field. Recommendations: For WB...

4.8CVSS6.4AI score0.00493EPSS
Exploits0References6
Cvelist
Cvelist
added 2022/11/21 12:0 a.m.15 views

CVE-2022-45014

A cross-site scripting XSS vulnerability in the Search Settings module of WBCE CMS v1.5.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Results Header field...

5.2AI score0.00493EPSS
Exploits0References3
Rows per page
Query Builder