10 matches found
CVE-2019-25230
An information disclosure vulnerability in Kentico Xperience allows authenticated users to view sensitive system objects through the live site widget properties dialog. Attackers can exploit this vulnerability to access unauthorized system information without proper access controls...
CVE-2019-25230
Summary: CVE-2019-25230 affects Kentico Xperience with an information disclosure in the Live Site Widget Properties dialog. The vulnerability allows authenticated users to view sensitive system objects, exposing information beyond their access level. According to the connected records, the issue ...
CVE-2019-25230 Kentico Xperience <= 12.0.0 User Widget Information Disclosure
An information disclosure vulnerability in Kentico Xperience allows authenticated users to view sensitive system objects through the live site widget properties dialog. Attackers can exploit this vulnerability to access unauthorized system information without proper access controls...
Cross-site Scripting (XSS)
Overview pagekit/pagekit is a modular and lightweight CMS built with Symfony components and Vue.js. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the index.php/admin/site/widget endpoint. Details Cross-site scripting or XSS is a code vulnerability that occurs wh...
GHSA-XW32-6422-FRQM Pagekit Cross-site Scripting vulnerability
Pagekit 1.0.18 is vulnerable to Cross Site Scripting XSS in index.php/admin/site/widget...
Pagekit Cross-site Scripting vulnerability
Pagekit 1.0.18 is vulnerable to Cross Site Scripting XSS in index.php/admin/site/widget...
CVE-2024-45967
Pagekit 1.0.18 is vulnerable to Cross Site Scripting XSS in index.php/admin/site/widget...
Pagekit 安全漏洞
Pagekit is a modular, lightweight CMS Content Management System from Pagekit open source. A security vulnerability exists in Pagekit version 1.0.18, which stems from a cross-site scripting vulnerability found in index.php/admin/site/widget...
CVE-2024-45967
Pagekit 1.0.18 is vulnerable to Cross Site Scripting XSS in index.php/admin/site/widget...
CVE-2024-45967
Pagekit 1.0.18 is vulnerable to Cross Site Scripting XSS in index.php/admin/site/widget...