Lucene search
K

69 matches found

CVE
CVE
added 2020/05/07 7:10 p.m.71 views

CVE-2020-12703

CVE-2020-12703 affects UliCMS prior to 2020.2, with a Cross-Site Scripting (XSS) vulnerability occurring during PackageController uninstall. Root cause cited across sources is lack of proper validation of client-side data within the web application. Impact is client-side code execution within aff...

6.1CVSS6AI score0.00641EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/05/07 7:10 p.m.18 views

CVE-2020-12703

UliCMS before 2020.2 has XSS during PackageController uninstall...

6.1AI score0.00641EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/05/07 7:9 p.m.22 views

CVE-2020-12704

UliCMS before 2020.2 has PageController stored XSS...

6.3AI score0.01186EPSS
Exploits1References1
CVE
CVE
added 2020/05/07 7:9 p.m.90 views

CVE-2020-12704

UliCMS before version 2020.2 contains a stored XSS in the PageController (client-side data validation issue). Multiple sources (NVD, Red Hat, CNVD, CVE listings) confirm a cross-site scripting vulnerability exists in UliCMS prior to 2020.2, enabling an attacker to inject script via the affected p...

6.1CVSS6.2AI score0.01186EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2020/03/25 12:0 a.m.1 views

UliCMS Cross-Site Scripting Vulnerability

UliCMS is an open source content management system. UliCMS suffers from a cross-site scripting vulnerability that stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit this vulnerability to execute client-side code...

6.4AI score
Exploits0References1
Packet Storm
Packet Storm
added 2020/03/24 12:0 a.m.166 views

UliCMS 2020.1 Cross Site Scripting

Exploit Title: UliCMS 2020.1 - Persistent Cross-Site Scripting Google Dork: N/A Date: 2019-03-24 Exploit Author: SunCSR Vendor Homepage: https://en.ulicms.de Software Link: https://en.ulicms.de/currentversions.html Version: 2020.1 Tested on: Windows CVE : N/A Vulnerability : Stored Cross-Site...

7.4AI score
Exploits0
0day.today
0day.today
added 2020/03/24 12:0 a.m.125 views

UliCMS 2020.1 - Persistent Cross-Site Scripting Vulnerability

Exploit for hardware platform in category web applications Exploit Title: UliCMS 2020.1 - Persistent Cross-Site Scripting Exploit Author: SunCSR Vendor Homepage: https://en.ulicms.de Software Link: https://en.ulicms.de/currentversions.html Version: 2020.1 Tested on: Windows CVE : N/A Vulnerabilit...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2020/03/24 12:0 a.m.98 views

UliCMS 2020.1 - Persistent Cross-Site Scripting

UliCMS 2020.1 - Persistent Cross-Site Scripting Exploit Title: UliCMS 2020.1 - Persistent Cross-Site Scripting Google Dork: N/A Date: 2019-03-24 Exploit Author: SunCSR Vendor Homepage: https://en.ulicms.de Software Link: https://en.ulicms.de/currentversions.html Version: 2020.1 Tested on: Windows...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2020/03/24 12:0 a.m.231 views

UliCMS 2020.1 - Persistent Cross-Site Scripting

Exploit Title: UliCMS 2020.1 - Persistent Cross-Site Scripting Google Dork: N/A Date: 2019-03-24 Exploit Author: SunCSR Vendor Homepage: https://en.ulicms.de Software Link: https://en.ulicms.de/currentversions.html Version: 2020.1 Tested on: Windows CVE : CVE-2020-12704 Vulnerability : Stored...

6.1CVSS6.4AI score0.01186EPSS
Exploits1
Packet Storm
Packet Storm
added 2019/06/10 12:0 a.m.155 views

UliCMS 2019.1 Cross Site Scripting

Exploit Title: UliCMS 2019.1 "Spitting Lama" - Stored Cross-Site Scripting Google Dork: intext:"by UliCMS" Date: 2019-05-12 Exploit Author: Unk9vvN Vendor Homepage: https://en.ulicms.de Software Link: https://www.ulicms.de/aktuelles.html?single=ulicms-20191-spitting-lama-ist-fertig Version: 2019....

4.3CVSS6.3AI score0.03473EPSS
Exploits9
Exploit DB
Exploit DB
added 2019/06/10 12:0 a.m.426 views

UliCMS 2019.1 'Spitting Lama' - Persistent Cross-Site Scripting

Exploit Title: UliCMS 2019.1 "Spitting Lama" - Stored Cross-Site Scripting Google Dork: intext:"by UliCMS" Date: 2019-05-12 Exploit Author: Unk9vvN Vendor Homepage: https://en.ulicms.de Software Link: https://www.ulicms.de/aktuelles.html?single=ulicms-20191-spitting-lama-ist-fertig Version: 2019....

6.1CVSS6.3AI score0.03473EPSS
Exploits9
exploitpack
exploitpack
added 2019/06/10 12:0 a.m.36 views

UliCMS 2019.1 Spitting Lama - Persistent Cross-Site Scripting

UliCMS 2019.1 Spitting Lama - Persistent Cross-Site Scripting Exploit Title: UliCMS 2019.1 "Spitting Lama" - Stored Cross-Site Scripting Google Dork: intext:"by UliCMS" Date: 2019-05-12 Exploit Author: Unk9vvN Vendor Homepage: https://en.ulicms.de Software Link:...

4.3CVSS6.1AI score0.03473EPSS
Exploits9
0day.today
0day.today
added 2019/06/10 12:0 a.m.202 views

UliCMS 2019.1 Spitting Lama - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: UliCMS 2019.1 "Spitting Lama" - Stored Cross-Site Scripting Google Dork: intext:"by UliCMS" Exploit Author: Unk9vvN Vendor Homepage: https://en.ulicms.de Software Link:...

4.3CVSS6.3AI score0.03473EPSS
Exploits9
Prion
Prion
added 2019/05/08 6:29 p.m.19 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in UliCMS 2019.2 and 2019.1 allow remote attackers to inject arbitrary web script or HTML via the go parameter to admin/index.php, the go parameter to /admin/index.php?register=register, or the error parameter to admin/index.php?action=favicon...

4.3CVSS6AI score0.03473EPSS
Exploits9References3Affected Software1
NVD
NVD
added 2019/05/08 6:29 p.m.23 views

CVE-2019-11398

Multiple cross-site scripting XSS vulnerabilities in UliCMS 2019.2 and 2019.1 allow remote attackers to inject arbitrary web script or HTML via the go parameter to admin/index.php, the go parameter to /admin/index.php?register=register, or the error parameter to admin/index.php?action=favicon...

6.1CVSS6.1AI score0.03473EPSS
Exploits9References3
OSV
OSV
added 2019/05/08 6:29 p.m.2 views

CVE-2019-11398

Multiple cross-site scripting XSS vulnerabilities in UliCMS 2019.2 and 2019.1 allow remote attackers to inject arbitrary web script or HTML via the go parameter to admin/index.php, the go parameter to /admin/index.php?register=register, or the error parameter to admin/index.php?action=favicon...

6.1CVSS6.4AI score0.03473EPSS
Exploits9References3
Cvelist
Cvelist
added 2019/05/08 5:36 p.m.30 views

CVE-2019-11398

Multiple cross-site scripting XSS vulnerabilities in UliCMS 2019.2 and 2019.1 allow remote attackers to inject arbitrary web script or HTML via the go parameter to admin/index.php, the go parameter to /admin/index.php?register=register, or the error parameter to admin/index.php?action=favicon...

6.1AI score0.03473EPSS
Exploits9References3
CVE
CVE
added 2019/05/08 5:36 p.m.92 views

CVE-2019-11398

CVE-2019-11398 involves multiple stored/reflected cross-site scripting (XSS) vulnerabilities in the UliCMS platforms 2019.2 and 2019.1. The public descriptions specify that an attacker can inject arbitrary script/HTML via the following vectors: the go parameter to admin/index.php, the go paramete...

6.1CVSS6AI score0.03473EPSS
Exploits9References3Affected Software1
CNVD
CNVD
added 2019/04/23 12:0 a.m.3 views

UliCMS XSS Injection Vulnerability

UliCMS is an open source content management system. A cross-site scripting vulnerability exists in UliCMS versions 2019.2 and 2019.1. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit the vulnerability to execute client-si...

6.1CVSS6.4AI score0.03473EPSS
Exploits9References1
Packet Storm
Packet Storm
added 2019/04/23 12:0 a.m.54 views

UliCMS 2019.2 / 2019.1 Cross Site Scripting

Exploit Title: UliCMS - 2019.2 , 2019.1 - Multiple Cross-Site Scripting Google Dork: intext:"by UliCMS" Exploit Author: Kağan EĞLENCE Vendor Homepage: https://en.ulicms.de/ Version: 2019.2 , 2019.1 CVE : CVE-2019-11398 Vulnerability 1 Url :...

6.3AI score0.03473EPSS
Exploits9
Rows per page
Query Builder