Lucene search
Weaselcms ProjectWeaselcms0.3.5
3 matches found
CVE-2018-14877
An issue was discovered in WeaselCMS v0.3.5. XSS exists via Site Language, Site Title, Site Description, and Site Keywords on the SETTINGS page.
5.4CVSS5.2AI score0.00191EPSS
CVE-2018-14959
An issue was discovered in WeaselCMS v0.3.5. CSRF can create new pages via an index.php?b=pages&a=new URI.
8.8CVSS8.7AI score0.00141EPSS
CVE-2018-14958
An issue was discovered in WeaselCMS v0.3.5. CSRF can update the website settings (such as the theme, title, and description) via index.php.
8.8CVSS8.7AI score0.00141EPSS