Blackcat Cms Security Vulnerabilities and Issues — Blackcat Cms CVE List

Lucene search

Blackcat-cmsBlackcat Cms

5 matches found

CVE•added 2021/07/09 10:15 p.m.•72 views

CVE-2020-25877

A stored cross site scripting (XSS) vulnerability in the 'Add Page' feature of BlackCat CMS 1.3.6 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the 'Title' parameter.

5.4CVSS5.2AI score0.00163EPSS

CVE•added 2017/08/31 4:29 a.m.•44 views

CVE-2017-14049

In BlackCat CMS 1.2, backend/settings/ajax_save_settings.php allows remote authenticated users to conduct XSS attacks via the Website header or Website footer field.

5.4CVSS5AI score0.0014EPSS

CVE•added 2017/07/17 9:29 p.m.•39 views

CVE-2017-9609

Cross-site scripting (XSS) vulnerability in Blackcat CMS 1.2 allows remote authenticated users to inject arbitrary web script or HTML via the map_language parameter to backend/pages/lang_settings.php.

5.4CVSS5AI score0.01159EPSS

CVE•added 2023/09/27 3:19 p.m.•36 views

CVE-2023-44042

A stored cross-site scripting (XSS) vulnerability in /settings/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website header parameter.

5.4CVSS5.2AI score0.00196EPSS

CVE•added 2018/12/10 7:29 p.m.•31 views

CVE-2018-16635

Blackcat CMS 1.3.2 allows XSS via the willkommen.php?lang=DE page title at backend/pages/modify.php.

5.4CVSS5.2AI score0.00206EPSS