Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
QuickappscmsQuickapps Cms

3 matches found

CVE
CVEadded 2018/01/03 2:0 p.m.50 views

CVE-2017-1000495

QuickApps CMS 2.0.0 is affected by a Stored Cross-site Scripting vulnerability in the user’s real name field, with impact described as denial of service and the ability for an attacker to perform unauthorized actions with an administrator account. Root cause/technical details are not fully provid...

5.4CVSS5.3AI score0.00631EPSS
CVE
CVEadded 2018/09/16 9:0 p.m.35 views

CVE-2018-17102

CVE-2018-17102 affects QuickAppsCMS (QACMS) up to version 2.0.0-beta2. The issue is a Cross-Site Request Forgery (CSRF) vulnerability that can change the administrator password via the /user/me URI. Documented impact indicates high-severity outcomes (e.g., unauthorized password change) with netwo...

8.8CVSS8.7AI score0.00709EPSS
Web
CVE
CVEadded 2018/03/28 4:0 a.m.35 views

CVE-2018-9108

CVE-2018-9108 affects QuickAppsCMS 2.0.0-beta2. Description: CSRF in /admin/user/manage/add allows an unauthorized remote attacker to create an admin account. CVSS3 base score 8.8 (HIGH); attack vector NETWORK; user interaction REQUIRED; confidentiality/ integrity/availability HIGH. No remediatio...

8.8CVSS8.6AI score0.00787EPSS