Csz Cms Security Vulnerabilities and Issues — Csz Cms CVE List

Lucene search

CszcmsCsz Cms

7 matches found

cve•added 2021/07/09 10:15 p.m.•69 views

CVE-2020-25391

A cross site scripting vulnerability in CSZ CMS 1.2.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the 'New Pages' field under the 'Pages Content' module.

5.4CVSS5.5AI score0.00191EPSS

cve•added 2021/07/09 10:15 p.m.•58 views

CVE-2020-25392

A cross site scripting (XSS) vulnerability in CSZ CMS 1.2.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the 'New Article' field under the 'Article' plugin.

5.4CVSS5.4AI score0.00191EPSS

cve•added 2024/04/19 4:15 p.m.•48 views

CVE-2024-27752

Cross Site Scripting vulnerability in CSZ CMS v.1.3.0 allows a remote attacker to execute arbitrary code via the Default Keyword field in the settings function.

5.4CVSS7.3AI score0.00424EPSS

cve•added 2023/08/18 7:15 p.m.•42 views

CVE-2023-38911

A Cross-Site Scripting (XSS) vulnerability in CSZ CMS 1.3.0 allows attackers to execute arbitrary code via a crafted payload to the Gallery parameter in the YouTube URL fields.

5.4CVSS5.4AI score0.00123EPSS

cve•added 2021/03/11 5:15 p.m.•37 views

CVE-2021-26776

CSZ CMS 1.2.9 is affected by a cross-site scripting (XSS) vulnerability in multiple pages through the field name.

5.4CVSS5.3AI score0.00172EPSS

cve•added 2021/03/10 2:15 p.m.•28 views

CVE-2021-3224

A stored cross-site scripting (XSS) vulnerability in cszcms 1.2.9 exists in /admin/pages/new via the content parameter.

5.4CVSS5.2AI score0.00172EPSS

cve•added 2023/08/22 7:16 p.m.•26 views

CVE-2023-39599

Cross-Site Scripting (XSS) vulnerability in CSZ CMS v.1.3.0 allows attackers to execute arbitrary code via a crafted payload to the Social Settings parameter.

5.4CVSS5.3AI score0.00236EPSS