Lucene search
K

12 matches found

NVD
NVD
added 2019/10/09 11:15 a.m.25 views

CVE-2019-17368

S-CMS v1.5 has XSS in tpl.php via the member/memberlogin.php from parameter...

6.1CVSS6AI score0.00818EPSS
Exploits1References1
Prion
Prion
added 2019/10/09 11:15 a.m.23 views

Code injection

S-CMS v1.5 has XSS in tpl.php via the member/memberlogin.php from parameter...

4.3CVSS6AI score0.00818EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/10/09 10:55 a.m.26 views

CVE-2019-17368

S-CMS v1.5 has XSS in tpl.php via the member/memberlogin.php from parameter...

6.1AI score0.00818EPSS
Exploits1References1
NVD
NVD
added 2018/11/17 3:29 p.m.28 views

CVE-2018-19332

An issue was discovered in S-CMS v1.5. There is a CSRF vulnerability that can add a new user via the admin/ajax.php?type=member&action=add URI...

8.8CVSS8.7AI score0.00465EPSS
Exploits1References1
NVD
NVD
added 2018/11/17 3:29 p.m.20 views

CVE-2018-19331

An issue was discovered in S-CMS v1.5. There is a SQL injection vulnerability in search.php via the keyword parameter...

7.5CVSS7.8AI score0.01079EPSS
Exploits0References1
Prion
Prion
added 2018/11/17 3:29 p.m.23 views

Sql injection

An issue was discovered in S-CMS v1.5. There is a SQL injection vulnerability in search.php via the keyword parameter...

5CVSS7.8AI score0.01079EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2018/11/17 3:29 p.m.16 views

Cross site request forgery (csrf)

An issue was discovered in S-CMS v1.5. There is a CSRF vulnerability that can add a new user via the admin/ajax.php?type=member&action=add URI...

6.8CVSS8.6AI score0.00465EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2018/11/17 3:0 p.m.52 views

CVE-2018-19331

CVE-2018-19331 affects S-CMS v1.5: the search.php endpoint is vulnerable to SQL injection via the keyword parameter. Root cause: unsafely constructed SQL in the search feature. Exploitation via keyword parameter is documented; this could enable a SQL injection attack. No remediation or patch deta...

7.5CVSS7.8AI score0.01079EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/11/17 3:0 p.m.22 views

CVE-2018-19331

An issue was discovered in S-CMS v1.5. There is a SQL injection vulnerability in search.php via the keyword parameter...

7.8AI score0.01079EPSS
Exploits0References1
Prion
Prion
added 2018/11/09 11:29 p.m.17 views

Cross site scripting

An issue was discovered in S-CMS v1.5. There is an XSS vulnerability in search.php via the keyword parameter...

4.3CVSS6AI score0.00692EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/11/09 11:0 p.m.26 views

CVE-2018-19145

An issue was discovered in S-CMS v1.5. There is an XSS vulnerability in search.php via the keyword parameter...

6AI score0.00692EPSS
Exploits1References1
CVE
CVE
added 2018/11/09 11:0 p.m.60 views

CVE-2018-19145

This CVE concerns S-CMS v1.5 and an XSS vulnerability in search.php reachable via the keyword parameter. The issue is triggered through input handling in the search routine, allowing injection of web scripts or HTML. The core information confirms the vulnerability exists in the S-CMS 1.5 componen...

6.1CVSS5.9AI score0.00692EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder