CVE-2021-47981

Quick.CMS 6.7 contains a cross-site scripting vulnerability in the sliders form that allows authenticated attackers to inject malicious scripts by submitting XSS payloads through the sDescription parameter. Attackers can craft CSRF forms targeting the admin.php?p=sliders-form endpoint to execute...

PT-2026-41467

Name of the Vulnerable Software and Affected Versions Quick.CMS version 6.7 Description An issue in the sliders form allows authenticated attackers to inject malicious scripts by submitting payloads through the sDescription parameter. This can be achieved by crafting CSRF Cross-Site Request Forge...

TCMAN GIM Cross-Site Scripting Vulnerability

TCMAN GIM is a CMMS from TCMAN, Inc. that can be used in a variety of areas: industrial, facilities, healthcare, fleet and maintenance services. A cross-site scripting vulnerability exists in TCMAN GIM version v8.0.1, which stems from the sReferencia, sDescription, txtCodigo, and txtDeripcion...