Lucene search
Sling Cms Security Vulnerabilities - CVSS Score 5 - 6
cve
An improper neutralization of input during web page generation ('Cross-site Scripting') [CWE-79] vulnerability in Sling App CMS version 1.1.0 and prior may allow an authenticated remote attacker to perform a reflected cross site scripting (XSS) attack in the taxonomy management feature.
5.4CVSS
5.2AI Score
0.001EPSS
2022-11-02 01:15 PM
46
cve
An improper neutralization of input during web page generation ('Cross-site Scripting') [CWE-79] vulnerability in Sling App CMS version 1.1.2 and prior may allow an authenticated remote attacker to perform a reflected cross-site scripting (XSS) attack in the site group feature. Upgrade to Apache Sl...
5.4CVSS
5.2AI Score
0.001EPSS
2023-01-09 11:15 AM
40