Lucene search
K

4 matches found

NVD
NVD
added 2018/05/28 1:29 p.m.24 views

CVE-2018-11512

Stored cross-site scripting XSS vulnerability in the "Website's name" field found in the "Settings" page under the "General" menu in Creatiwity wityCMS 0.6.1 allows remote attackers to inject arbitrary web script or HTML via a crafted website name by doing an authenticated POST HTTP request to...

4.8CVSS4.8AI score0.02178EPSS
Exploits5References3
OSV
OSV
added 2018/05/28 1:29 p.m.10 views

CVE-2018-11512

Stored cross-site scripting XSS vulnerability in the "Website's name" field found in the "Settings" page under the "General" menu in Creatiwity wityCMS 0.6.1 allows remote attackers to inject arbitrary web script or HTML via a crafted website name by doing an authenticated POST HTTP request to...

4.8CVSS5AI score
Exploits0References3
Exploit DB
Exploit DB
added 2018/05/28 12:0 a.m.48 views

wityCMS 0.6.1 - Cross-Site Scripting

Exploit Title: wityCMS 0.6.1 Persistent XSS on "Website's name" field Date: 05/28/2018 Exploit Author: Nathu Nandwani Website: http://nandtech.co/ Vendor Homepage: https://creatiwity.net/witycms Software Link: https://github.com/Creatiwity/wityCMS/releases/tag/0.6.1 Version: 0.6.1 Tested on:...

4.8CVSS5.1AI score0.02178EPSS
Exploits5
exploitpack
exploitpack
added 2018/05/28 12:0 a.m.43 views

wityCMS 0.6.1 - Cross-Site Scripting

wityCMS 0.6.1 - Cross-Site Scripting Exploit Title: wityCMS 0.6.1 Persistent XSS on "Website's name" field Date: 05/28/2018 Exploit Author: Nathu Nandwani Website: http://nandtech.co/ Vendor Homepage: https://creatiwity.net/witycms Software Link:...

3.5CVSS5AI score0.02178EPSS
Exploits5
Rows per page
Query Builder