An access control issue in WebBoss.io CMS v3.7.0.1 allows attackers to access the Website Backup Tool via a crafted GET request.
7.5CVSS
7.3AI Score
0.001EPSS
WebBoss.io CMS before v3.7.0.1 was discovered to contain a reflected cross-site scripting (XSS) vulnerability.
6.1CVSS
6AI Score
0.001EPSS
WebBoss.io CMS v3.7.0.1 contains a stored Cross-Site Scripting (XSS) vulnerability due to lack of input validation and output encoding.
5.4CVSS
5.2AI Score
0.001EPSS
WebBoss.io CMS v3.7.0.1 contains a stored cross-site scripting (XSS) vulnerability.
5.4CVSS
5.2AI Score
0.001EPSS