Lucene search

Chaoji Cms Security Vulnerabilities

cve

CVE-2020-18410

A stored cross site scripting (XSS) vulnerability in /index.php?admin-master-article-edit of Chaoji CMS v2.18 that allows attackers to obtain administrator privileges.

4.8CVSS

4.8AI Score

0.001EPSS

2023-06-27 08:15 PM

cve

CVE-2020-18413

Stored cross site scripting (XSS) vulnerability in /index.php?admin-master-navmenu-add of Chaoji CMS v2.18 that allows attackers to execute arbitrary code.

4.8CVSS

5.2AI Score

0.001EPSS

2023-06-27 08:15 PM

cve

CVE-2020-18414

Stored cross site scripting (XSS) vulnerability in Chaoji CMS v2.18 that allows attackers to execute arbitrary code via /index.php?admin-master-webset.

4.8CVSS

5.2AI Score

0.001EPSS

2023-06-27 09:15 PM

cve

CVE-2020-19962

A stored cross-site scripting (XSS) vulnerability in the getClientIp function in /lib/tinwin.class.php of Chaoji CMS 2.39, allows attackers to execute arbitrary web scripts.

5.4CVSS

5.3AI Score

0.001EPSS

2021-10-14 03:15 PM