Lucene search
+L

102 matches found

redhatcve
redhatcve
added 2025/05/23 9:55 a.m.9 views

CVE-2024-28417

Webedition CMS 9.2.2.0 has a Stored XSS vulnerability via /webEdition/wecmd.php...

6.3CVSS6AI score0.00347EPSS
Exploits1References1
nvd
nvd
added 2024/03/14 1:15 p.m.23 views

CVE-2024-28417

Webedition CMS 9.2.2.0 has a Stored XSS vulnerability via /webEdition/wecmd.php...

6.3CVSS5.7AI score0.00347EPSS
Exploits1References1
nvd
nvd
added 2024/03/14 1:15 p.m.24 views

CVE-2024-28418

Webedition CMS 9.2.2.0 has a File upload vulnerability via /webEdition/wecmd.php...

6.5CVSS6.7AI score0.0044EPSS
Exploits1References1
osv
osv
added 2024/03/14 1:15 p.m.6 views

CVE-2024-28418

Webedition CMS 9.2.2.0 has a File upload vulnerability via /webEdition/wecmd.php...

6.5CVSS5.8AI score0.0044EPSS
Exploits1References1
osv
osv
added 2024/03/14 1:15 p.m.5 views

CVE-2024-28417

Webedition CMS 9.2.2.0 has a Stored XSS vulnerability via /webEdition/wecmd.php...

6.3CVSS5.8AI score
Exploits0References1
cnnvd
cnnvd
added 2024/03/14 12:0 a.m.5 views

Webedition Cross-Site Scripting Vulnerability

Webedition is an open source web application framework from the German company Webedition. A cross-site scripting vulnerability exists in Webedition CMS version 9.2.2.0, which originates from cross-site scripting in webEdition/wecmd.php...

6.3CVSS6.2AI score0.00347EPSS
Exploits1References2
vulnrichment
vulnrichment
added 2024/03/14 12:0 a.m.18 views

CVE-2024-28417

Webedition CMS 9.2.2.0 has a Stored XSS vulnerability via /webEdition/wecmd.php...

6AI score0.00347EPSS
Exploits1References1
cnnvd
cnnvd
added 2024/03/14 12:0 a.m.4 views

Webedition Security Vulnerabilities

Webedition is an open source web application framework from German company Webedition. A security vulnerability exists in Webedition CMS version 9.2.2.0, which stems from /webEdition/wecmd.php allowing file uploads...

6.5CVSS6.8AI score0.0044EPSS
Exploits1References2
cvelist
cvelist
added 2024/03/14 12:0 a.m.32 views

CVE-2024-28417

Webedition CMS 9.2.2.0 has a Stored XSS vulnerability via /webEdition/wecmd.php...

5.8AI score0.00347EPSS
Exploits1References1
cvelist
cvelist
added 2024/03/14 12:0 a.m.37 views

CVE-2024-28418

Webedition CMS 9.2.2.0 has a File upload vulnerability via /webEdition/wecmd.php...

6.9AI score0.0044EPSS
Exploits1References1
ptsecurity
ptsecurity
added 2024/03/14 12:0 a.m.10 views

PT-2024-22423 · Unknown · Webedition Cms

Name of the Vulnerable Software and Affected Versions: Webedition CMS version 9.2.2.0 Description: The issue is related to a File upload vulnerability. This vulnerability can be exploited via the /webEdition/we cmd.php API endpoint. Recommendations: For Webedition CMS version 9.2.2.0, as a...

6.5CVSS6.6AI score0.0044EPSS
Exploits1References7
cve
cve
added 2024/03/14 12:0 a.m.75 views

CVE-2024-28417

Webedition CMS 9.2.2.0 has a Stored XSS vulnerability via the /webEdition/we_cmd.php endpoint. The issue affects the webEdition CMS component (we_cmd.php) and requires user interaction; impact is described as low for confidentiality, integrity, and availability (CVSS 3.1 base score 6.3). Some sou...

6.3CVSS5.8AI score0.00347EPSS
Exploits1References1Affected Software1
vulnrichment
vulnrichment
added 2024/03/14 12:0 a.m.13 views

CVE-2024-28418

Webedition CMS 9.2.2.0 has a File upload vulnerability via /webEdition/wecmd.php...

7AI score0.0044EPSS
Exploits1References1
cve
cve
added 2024/03/14 12:0 a.m.72 views

CVE-2024-28418

CVE-2024-28418 affects Webedition CMS 9.2.2.0 with a file-upload vulnerability exploitable via /webEdition/we_cmd.php. The vulnerability is documented across multiple feeds; the primary technical detail is the file upload path. No explicit fix version is provided in the sources; one advisory note...

6.5CVSS6.9AI score0.0044EPSS
Exploits1References1Affected Software1
ptsecurity
ptsecurity
added 2024/03/14 12:0 a.m.16 views

PT-2024-22422 · Unknown · Webedition Cms

Name of the Vulnerable Software and Affected Versions: Webedition CMS version 9.2.2.0 Description: The issue is a Stored XSS vulnerability. It can be exploited via the "/webEdition/we cmd.php" API endpoint. Recommendations: For Webedition CMS version 9.2.2.0, as a temporary workaround, consider...

6.3CVSS5.7AI score0.00347EPSS
Exploits1References6
packetstorm
packetstorm
added 2023/10/10 12:0 a.m.267 views

Webedition CMS 2.9.8.8 Server-Side Request Forgery

Exploit Title: Webedition CMS v2.9.8.8 - Blind SSRF Application: Webedition CMS Version: v2.9.8.8 Bugs: Blind SSRF Technology: PHP Vendor URL: https://www.webedition.org/ Software Link: https://download.webedition.org/releases/OnlineInstaller.tgz?p=1 Date of found: 07.09.2023 Author: Mirabbas...

7.1AI score
Exploits0
zdt
zdt
added 2023/10/09 12:0 a.m.290 views

Webedition CMS v2.9.8.8 - Blind SSRF Vulnerability

Exploit Title: Webedition CMS v2.9.8.8 - Blind SSRF Application: Webedition CMS Version: v2.9.8.8 Bugs: Blind SSRF Technology: PHP Vendor URL: https://www.webedition.org/ Software Link: https://download.webedition.org/releases/OnlineInstaller.tgz?p=1 Date of found: 07.09.2023 Author: Mirabbas...

7.1AI score
Exploits0
exploitdb
exploitdb
added 2023/10/09 12:0 a.m.352 views

Webedition CMS v2.9.8.8 - Blind SSRF

Exploit Title: Webedition CMS v2.9.8.8 - Blind SSRF Application: Webedition CMS Version: v2.9.8.8 Bugs: Blind SSRF Technology: PHP Vendor URL: https://www.webedition.org/ Software Link: https://download.webedition.org/releases/OnlineInstaller.tgz?p=1 Date of found: 07.09.2023 Author: Mirabbas...

7AI score
Exploits0
zdt
zdt
added 2023/08/04 12:0 a.m.191 views

Webedition CMS v2.9.8.8 - Stored XSS Vulnerability

Exploit Title: Webedition CMS v2.9.8.8 - Stored XSS Application: Webedition CMS Version: v2.9.8.8 Bugs: Stored Xss Technology: PHP Vendor URL: https://www.webedition.org/ Software Link: https://download.webedition.org/releases/OnlineInstaller.tgz?p=1 Date of found: 03.08.2023 Author: Mirabbas...

7.1AI score
Exploits0
packetstorm
packetstorm
added 2023/08/04 12:0 a.m.196 views

Webedition CMS 2.9.8.8 Remote Code Execution

Exploit Title: Webedition CMS v2.9.8.8 - Remote Code Execution RCE Application: webedition Cms Version: v2.9.8.8 Bugs: RCE Technology: PHP Vendor URL: https://www.webedition.org/ Software Link: https://download.webedition.org/releases/OnlineInstaller.tgz?p=1 Date of found: 03.08.2023 Author:...

7.1AI score
Exploits0
Rows per page
Query Builder