Lucene search
+L

6 matches found

CNVD
CNVD
added 2022/11/23 12:0 a.m.35 views

WBCE CMS Section Header Field Cross-Site Scripting Vulnerability

WBCE CMS is an open source content management system CMS based on PHP and MySQL. A cross-site scripting vulnerability exists in WBCE CMS v1.5.4 and its previous versions, which stems from the lack of effective filtering and escaping of user-supplied data in the Section Header field of the Show...

4.8CVSS4.8AI score0.00493EPSS
Exploits0References1
NVD
NVD
added 2022/11/21 3:15 p.m.20 views

CVE-2022-45013

A cross-site scripting XSS vulnerability in the Show Advanced Option module of WBCE CMS v1.5.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Section Header field...

4.8CVSS0.00493EPSS
Exploits0References3
Prion
Prion
added 2022/11/21 3:15 p.m.15 views

Cross site scripting

A cross-site scripting XSS vulnerability in the Show Advanced Option module of WBCE CMS v1.5.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Section Header field...

4.3CVSS4.9AI score0.00493EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/11/21 12:0 a.m.28 views

CVE-2022-45013

A cross-site scripting XSS vulnerability in the Show Advanced Option module of WBCE CMS v1.5.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Section Header field...

5.2AI score0.00493EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/11/21 12:0 a.m.5 views

PT-2022-27368 · Wbce Cms · Wbce Cms

Name of the Vulnerable Software and Affected Versions: WBCE CMS version 1.5.4 Description: A cross-site scripting XSS issue in the Show Advanced Option module allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Section Header field. Recommendations: F...

4.8CVSS5.7AI score0.00493EPSS
Exploits0References7
CNNVD
CNNVD
added 2022/11/21 12:0 a.m.6 views

WBCE CMS 跨站脚本漏洞

WBCE CMS is an open source content management system CMS based on PHP and MySQL. A cross-site scripting vulnerability exists in WBCE CMS v1.5.4 and its previous versions, which stems from the lack of effective filtering and escaping of user-supplied data in the Section Header field of the Show...

4.8CVSS5.9AI score0.00493EPSS
Exploits0References4
Rows per page
Query Builder