Lucene search
+L

9 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-9068

Malware in sbrugna...

4.8CVSS5.1AI score0.0054EPSS
Exploits1References2
ptsecurity
ptsecurity
added 2024/04/17 12:0 a.m.9 views

PT-2024-24519 · Wondercms · Wondercms

Name of the Vulnerable Software and Affected Versions: WonderCMS version 3.4.3 Description: A cross-site scripting XSS vulnerability in the Settings section allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the WEBSITE TITLE parameter under the Menu...

9.6CVSS6AI score0.00711EPSS
Exploits1References8
nvd
nvd
added 2023/09/27 3:19 p.m.20 views

CVE-2023-44043

A reflected cross-site scripting XSS vulnerability in /install/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website title parameter...

6.1CVSS5.9AI score0.00482EPSS
Exploits1References1
osv
osv
added 2023/09/27 3:19 p.m.15 views

CVE-2023-44043

A reflected cross-site scripting XSS vulnerability in /install/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website title parameter...

6.1CVSS5.9AI score
Exploits0References1
attackerkb
attackerkb
added 2023/09/27 3:19 p.m.10 views

CVE-2023-44043

A reflected cross-site scripting XSS vulnerability in /install/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website title parameter...

6.1CVSS6AI score0.00482EPSS
Exploits1References2
cvelist
cvelist
added 2023/09/26 12:0 a.m.27 views

CVE-2023-44043

A reflected cross-site scripting XSS vulnerability in /install/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website title parameter...

6AI score0.00482EPSS
Exploits1References1
osv
osv
added 2018/05/02 7:29 p.m.5 views

CVE-2018-10680

Z-BlogPHP 1.5.2 has a stored Cross Site Scripting Vulnerability exploitable by an administrator who navigates to "Web site settings -- Basic setting -- Website title" and enters an XSS payload via the zbsystem/cmd.php ZCBLOGNAME parameter. NOTE: the vendor disputes the security relevance, noting ...

6.1CVSS5.6AI score0.00894EPSS
Exploits1References2
cnvd
cnvd
added 2017/12/28 12:0 a.m.4 views

PHP Scripts Mall Professional Service Script Cross-Site Scripting Vulnerability (CNVD-2018-00494)

Professional Service Script is a script from PHP Scripts Mall with search, task creation and task management features. A cross-site scripting vulnerability exists in PHP Scripts Mall Professional Service Script. A remote attacker can exploit this vulnerability via the admin/generalsettingupd.php...

4.8CVSS6.6AI score0.0054EPSS
Exploits1References1
prion
prion
added 2017/12/27 5:8 p.m.15 views

Code injection

PHP Scripts Mall Professional Service Script has XSS via the admin/generalsettingupd.php websitetitle parameter...

3.5CVSS4.9AI score0.0054EPSS
Exploits1References1
Rows per page
Query Builder