RSS   Podatności dla 'Maxsite cms'   RSS

2022-02-28
 
CVE-2022-25410

CWE-79
 

 
Maxsite CMS v180 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the parameter f_file_description at /admin/files.

 
 
CVE-2022-25411

CWE-434
 

 
A Remote Code Execution (RCE) vulnerability at /admin/options in Maxsite CMS v180 allows attackers to execute arbitrary code via a crafted PHP file.

 
 
CVE-2022-25412

CWE-22
 

 
Maxsite CMS v180 was discovered to contain multiple arbitrary file deletion vulnerabilities in /admin_page/all-files-update-ajax.php via the dir and deletefile parameters.

 
 
CVE-2022-25413

CWE-79
 

 
Maxsite CMS v108 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the parameter f_tags at /admin/page_edit/3.

 
2021-12-10
 
CVE-2021-27983

NVD-CWE-noinfo
 

 
Remote Code Execution (RCE) vulnerability exists in MaxSite CMS v107.5 via the Documents page.

 


Copyright 2024, cxsecurity.com

 

Back to Top