CVE-2023-27237
LavaLite CMS v 9.0.0 was discovered to be vulnerable to a host header injection attack.
6.1CVSS
6.4AI Score
0.001EPSS
CVE-2023-27238
LavaLite CMS v 9.0.0 was discovered to be vulnerable to web cache poisoning.
9.8CVSS
9.5AI Score
0.002EPSS
CVE-2023-30124
LavaLite v9.0.0 is vulnerable to Cross Site Scripting (XSS).
5.4CVSS
5.3AI Score
CVE-2023-36983
LavaLite CMS v 9.0.0 is vulnerable to Sensitive Data Exposure.
7.5CVSS
7.5AI Score
CVE-2023-36984