2 matches found
Bedita cross-site scripting vulnerability (CNVD-2015-05900)
BEdita is a framework for creating semantic rule-based PHP applications and content management systems developed by Chialab and ChannelWeb in Italy. A cross-site scripting vulnerability exists in Bedita 3.5.1 and earlier versions, which stems from the index.php/admin/saveConfig URI failing to...
CVE-2015-6809
Multiple cross-site scripting XSS vulnerabilities in BEdita before 3.6.0 allow remote attackers to inject arbitrary web script or HTML via the 1 cfgprojectName parameter to index.php/admin/saveConfig, the 2 datastatsproviderurl parameter to index.php/areas/saveArea, or the 3 datadescription...