3 matches found
CVE-2015-1562
Saurus CMS
CVE-2010-1997
The CVE refers to a Cross-site Scripting (XSS) vulnerability in Saurus CMS 4.7.0, specifically in admin/edit.php. The issue is triggered by the HTTP POST parameter pealkiri, allowing remote authenticated users who have "Article list" edit privileges to inject arbitrary web script or HTML that exe...
CVE-2015-0876
CVE-2015-0876 affects Saurus CMS Community Edition, specifically the print_language_selectbox function in files like classes/adminpage.inc.php. The vulnerability is cross-site scripting (XSS) that could allow an attacker to inject arbitrary script or HTML into a user’s browser. Impact is browser-...