Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MoziloMozilocms

4 matches found

CVE
CVEadded 2024/09/10 5:15 p.m.93 views

CVE-2024-44872

A reflected cross-site scripting (XSS) vulnerability in moziloCMS v3.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload.

6.1CVSS6.1AI score0.00059EPSS
CVE
CVEadded 2024/03/07 1:15 p.m.51 views

CVE-2024-2245

Cross-Site Scripting vulnerability in moziloCMS version 2.0. By sending a POST request to the '/install.php' endpoint, a JavaScript payload could be executed in the 'username' parameter.

6.1CVSS5.3AI score0.00198EPSS
CVE
CVEadded 2024/04/22 9:15 p.m.50 views

CVE-2024-29368

An arbitrary file upload vulnerability in the file handling module of moziloCMS v2.0 allows attackers to bypass extension restrictions via file renaming, potentially leading to unauthorized file execution or storage of malicious content.

6.5CVSS7.1AI score0.00091EPSS
CVE
CVEadded 2009/02/13 6:30 p.m.40 views

CVE-2008-6128

Session fixation vulnerability in moziloCMS 1.10.2 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.

6.8CVSS6.9AI score0.00536EPSS