69 matches found
CVE-2020-12703
CVE-2020-12703 affects UliCMS prior to 2020.2, with a Cross-Site Scripting (XSS) vulnerability occurring during PackageController uninstall. Root cause cited across sources is lack of proper validation of client-side data within the web application. Impact is client-side code execution within aff...
CVE-2020-12703
UliCMS before 2020.2 has XSS during PackageController uninstall...
CVE-2020-12704
UliCMS before 2020.2 has PageController stored XSS...
CVE-2020-12704
UliCMS before version 2020.2 contains a stored XSS in the PageController (client-side data validation issue). Multiple sources (NVD, Red Hat, CNVD, CVE listings) confirm a cross-site scripting vulnerability exists in UliCMS prior to 2020.2, enabling an attacker to inject script via the affected p...
UliCMS Cross-Site Scripting Vulnerability
UliCMS is an open source content management system. UliCMS suffers from a cross-site scripting vulnerability that stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit this vulnerability to execute client-side code...
UliCMS 2020.1 Cross Site Scripting
Exploit Title: UliCMS 2020.1 - Persistent Cross-Site Scripting Google Dork: N/A Date: 2019-03-24 Exploit Author: SunCSR Vendor Homepage: https://en.ulicms.de Software Link: https://en.ulicms.de/currentversions.html Version: 2020.1 Tested on: Windows CVE : N/A Vulnerability : Stored Cross-Site...
UliCMS 2020.1 - Persistent Cross-Site Scripting Vulnerability
Exploit for hardware platform in category web applications Exploit Title: UliCMS 2020.1 - Persistent Cross-Site Scripting Exploit Author: SunCSR Vendor Homepage: https://en.ulicms.de Software Link: https://en.ulicms.de/currentversions.html Version: 2020.1 Tested on: Windows CVE : N/A Vulnerabilit...
UliCMS 2020.1 - Persistent Cross-Site Scripting
UliCMS 2020.1 - Persistent Cross-Site Scripting Exploit Title: UliCMS 2020.1 - Persistent Cross-Site Scripting Google Dork: N/A Date: 2019-03-24 Exploit Author: SunCSR Vendor Homepage: https://en.ulicms.de Software Link: https://en.ulicms.de/currentversions.html Version: 2020.1 Tested on: Windows...
UliCMS 2020.1 - Persistent Cross-Site Scripting
Exploit Title: UliCMS 2020.1 - Persistent Cross-Site Scripting Google Dork: N/A Date: 2019-03-24 Exploit Author: SunCSR Vendor Homepage: https://en.ulicms.de Software Link: https://en.ulicms.de/currentversions.html Version: 2020.1 Tested on: Windows CVE : CVE-2020-12704 Vulnerability : Stored...
UliCMS 2019.1 Cross Site Scripting
Exploit Title: UliCMS 2019.1 "Spitting Lama" - Stored Cross-Site Scripting Google Dork: intext:"by UliCMS" Date: 2019-05-12 Exploit Author: Unk9vvN Vendor Homepage: https://en.ulicms.de Software Link: https://www.ulicms.de/aktuelles.html?single=ulicms-20191-spitting-lama-ist-fertig Version: 2019....
UliCMS 2019.1 'Spitting Lama' - Persistent Cross-Site Scripting
Exploit Title: UliCMS 2019.1 "Spitting Lama" - Stored Cross-Site Scripting Google Dork: intext:"by UliCMS" Date: 2019-05-12 Exploit Author: Unk9vvN Vendor Homepage: https://en.ulicms.de Software Link: https://www.ulicms.de/aktuelles.html?single=ulicms-20191-spitting-lama-ist-fertig Version: 2019....
UliCMS 2019.1 Spitting Lama - Persistent Cross-Site Scripting
UliCMS 2019.1 Spitting Lama - Persistent Cross-Site Scripting Exploit Title: UliCMS 2019.1 "Spitting Lama" - Stored Cross-Site Scripting Google Dork: intext:"by UliCMS" Date: 2019-05-12 Exploit Author: Unk9vvN Vendor Homepage: https://en.ulicms.de Software Link:...
UliCMS 2019.1 Spitting Lama - Persistent Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: UliCMS 2019.1 "Spitting Lama" - Stored Cross-Site Scripting Google Dork: intext:"by UliCMS" Exploit Author: Unk9vvN Vendor Homepage: https://en.ulicms.de Software Link:...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in UliCMS 2019.2 and 2019.1 allow remote attackers to inject arbitrary web script or HTML via the go parameter to admin/index.php, the go parameter to /admin/index.php?register=register, or the error parameter to admin/index.php?action=favicon...
CVE-2019-11398
Multiple cross-site scripting XSS vulnerabilities in UliCMS 2019.2 and 2019.1 allow remote attackers to inject arbitrary web script or HTML via the go parameter to admin/index.php, the go parameter to /admin/index.php?register=register, or the error parameter to admin/index.php?action=favicon...
CVE-2019-11398
Multiple cross-site scripting XSS vulnerabilities in UliCMS 2019.2 and 2019.1 allow remote attackers to inject arbitrary web script or HTML via the go parameter to admin/index.php, the go parameter to /admin/index.php?register=register, or the error parameter to admin/index.php?action=favicon...
CVE-2019-11398
Multiple cross-site scripting XSS vulnerabilities in UliCMS 2019.2 and 2019.1 allow remote attackers to inject arbitrary web script or HTML via the go parameter to admin/index.php, the go parameter to /admin/index.php?register=register, or the error parameter to admin/index.php?action=favicon...
CVE-2019-11398
CVE-2019-11398 involves multiple stored/reflected cross-site scripting (XSS) vulnerabilities in the UliCMS platforms 2019.2 and 2019.1. The public descriptions specify that an attacker can inject arbitrary script/HTML via the following vectors: the go parameter to admin/index.php, the go paramete...
UliCMS XSS Injection Vulnerability
UliCMS is an open source content management system. A cross-site scripting vulnerability exists in UliCMS versions 2019.2 and 2019.1. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit the vulnerability to execute client-si...
UliCMS 2019.2 / 2019.1 Cross Site Scripting
Exploit Title: UliCMS - 2019.2 , 2019.1 - Multiple Cross-Site Scripting Google Dork: intext:"by UliCMS" Exploit Author: Kağan EĞLENCE Vendor Homepage: https://en.ulicms.de/ Version: 2019.2 , 2019.1 CVE : CVE-2019-11398 Vulnerability 1 Url :...