CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

NVD•added 2022/02/28 11:15 p.m.•8 views

CVE-2022-25410

Maxsite CMS v180 was discovered to contain a stored cross-site scripting XSS vulnerability via the parameter ffiledescription at /admin/files...

5.4CVSS0.00191EPSS

Exploits1References1

NVD•added 2022/02/28 11:15 p.m.•8 views

CVE-2022-25412

Maxsite CMS v180 was discovered to contain multiple arbitrary file deletion vulnerabilities in /adminpage/all-files-update-ajax.php via the dir and deletefile parameters...

8.1CVSS0.00388EPSS

Exploits1References1

Cvelist•added 2022/02/28 10:55 p.m.•13 views

CVE-2022-25412

Maxsite CMS v180 was discovered to contain multiple arbitrary file deletion vulnerabilities in /adminpage/all-files-update-ajax.php via the dir and deletefile parameters...

8.5AI score0.00388EPSS

Exploits1References1

CVE•added 2022/02/28 10:55 p.m.•84 views

CVE-2022-25412

Maxsite CMS v180 is affected by CVE-2022-25412 due to multiple arbitrary file deletion vulnerabilities in /admin_page/all-files-update-ajax.php. The root cause is lack of validation for the dir and deletefile parameters, enabling an attacker to delete arbitrary files. Exploitation details or in-t...

8.1CVSS8.3AI score0.00388EPSS

Exploits1References1Affected Software1

Cvelist•added 2022/02/28 10:55 p.m.•9 views

CVE-2022-25410

Maxsite CMS v180 was discovered to contain a stored cross-site scripting XSS vulnerability via the parameter ffiledescription at /admin/files...

5.5AI score0.00191EPSS

Exploits1References1

Rows per page