Winter CMS Local File Inclusion - (LFI)

Winter is a free, open-source content management system. Users with access to backend forms that include a ColorPicker FormWidget can provide a value that would then be included without further processing in the compilation of custom stylesheets via LESS. This had the potential to lead to a Local...

WinterCMS 1.2.3 Cross Site Scripting

Exploit Title: Stored XSS in WinterCMS 1.2.3 Plugin Components Date: 12/7/2023 Exploit Author: tmrswrr Vendor Homepage: https://wintercms.com/ Software Link: https://github.com/wintercms/winter Version: 1.2.3 Tested on: debian 9 PoC 1. Access the WinterCMS backend at http://localhost/backend/cms...

WinterCMS 1.2.2 Cross Site Scripting

Exploit Title: WinterCMS alertdocument.cookie; //P...

WinterCMS < 1.2.3 - Persistent Cross-Site Scripting Vulnerability

Exploit Title: WinterCMS alertdocument.cookie; //Post Request POST /backend/system/settings/update/winter/back...

WinterCMS &lt; 1.2.3 - Persistent Cross-Site Scripting

Exploit Title: WinterCMS alertdocument.cookie; //Post Request...

Cross-Site Scripting (XSS)

wintercms/winter and winter/storm are vulnerable to Cross-Site Scripting XSS attacks. The library does not properly escape user input, which allows an attacker with backend.managebranding permissions to upload SVGs as the application logo and execute malicious javascript on victim's browser...

Prototype Pollution

wintercms/winter is vulnerable to prototype pollution. The vulnerability exists in the main Snowboard class as well as its plugin loader where an attacker can control the default values of an object's properties. This allows the attacker to tamper with the logic of the application...