Blackcat Cms Security Vulnerabilities and Issues — Blackcat Cms CVE List

Lucene search

Blackcat-cmsBlackcat Cms

3 matches found

CVE•added 2018/02/28 10:29 p.m.•41 views

CVE-2015-5079

Directory traversal vulnerability in widgets/logs.php in BlackCat CMS before 1.1.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the dl parameter.

7.5CVSS7.3AI score0.3286EPSS

CVE•added 2018/12/10 7:29 p.m.•31 views

CVE-2018-16635

Blackcat CMS 1.3.2 allows XSS via the willkommen.php?lang=DE page title at backend/pages/modify.php.

5.4CVSS5.2AI score0.00206EPSS

CVE•added 2018/06/14 4:29 p.m.•29 views

CVE-2018-10821

Cross-site scripting (XSS) vulnerability in backend/pages/modify.php in BlackCatCMS 1.3 allows remote authenticated users with the Admin role to inject arbitrary web script or HTML via the search panel.

4.8CVSS4.7AI score0.00244EPSS