RSS   Vulnerabilities for 'Batflat'   RSS

2022-03-01
 
CVE-2021-41652

CWE-276
 

 
Insecure permissions in the file database.sdb of BatFlat CMS v1.3.6 allows attackers to dump the entire database.

 
2021-03-11
 
CVE-2021-27679

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in Navigation in Batflat CMS 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the field name.

 
 
CVE-2021-27678

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in Snippets in Batflat CMS 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the field name.

 
 
CVE-2021-27677

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in Galleries in Batflat CMS 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the field name.

 


Copyright 2024, cxsecurity.com

 

Back to Top