Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Web Content ManagementWeb Content Management News System

2 matches found

CVE
CVEadded 2005/08/07 4:0 a.m.46 views

CVE-2005-2489

The CVE concerns Web Content Management News System. The vulnerability originates from a direct request to Admin/Users/AddModifyInput.php that lets remote attackers create arbitrary user accounts and gain privileges. This implies a bypass of normal authorization checks and potential privilege esc...

7.5CVSS7.3AI score0.01901EPSS
Web
CVE
CVEadded 2005/08/07 4:0 a.m.42 views

CVE-2005-2488

The CVE-2005-2488 entry describes a Cross-site scripting (XSS) vulnerability in Web Content Management News System. The vulnerability allows remote attackers to inject arbitrary web script or HTML via (1) the strRootpath parameter to validsession.php or (2) the strTable parameter to Admin/News/Li...

4.3CVSS5.9AI score0.01768EPSS
Web