Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
frog cms project frog cms 0.9.5 vulnerabilities and exploits
(subscribe to this query)
685
VMScore
CVE-2018-8908
An issue exists in /admin/?/user/add in Frog CMS 0.9.5. The application's add user functionality suffers from CSRF. A malicious user can craft an HTML page and use it to trick a victim into clicking on it; once executed, a malicious user will be created with admin privileges...
Frog Cms Project Frog Cms 0.9.5
1 EDB exploit
312
VMScore
CVE-2018-20448
Frog CMS 0.9.5 has XSS via the Database name field to the /install/index.php URI.
Frog Cms Project Frog Cms 0.9.5
356
VMScore
CVE-2018-16373
Frog CMS 0.9.5 has an Upload vulnerability that can create files via /admin/?/plugin/file_manager/save.
Frog Cms Project Frog Cms 0.9.5
1 Github repository
312
VMScore
CVE-2018-20680
Frog CMS 0.9.5 has XSS in the admin/?/page/edit/1 body field.
Frog Cms Project Frog Cms 0.9.5
312
VMScore
CVE-2018-16374
Frog CMS 0.9.5 has stored XSS via /admin/?/plugin/comment/settings.
Frog Cms Project Frog Cms 0.9.5
578
VMScore
CVE-2018-20775
admin/?/plugin/file_manager in Frog CMS 0.9.5 allows PHP code execution by creating a new .php file containing PHP code, and then visiting this file under the public/ URI.
Frog Cms Project Frog Cms 0.9.5
312
VMScore
CVE-2018-20777
Frog CMS 0.9.5 has XSS via the admin/?/snippet/edit/1 Body field.
Frog Cms Project Frog Cms 0.9.5
383
VMScore
CVE-2018-20778
admin/?/plugin/file_manager in Frog CMS 0.9.5 allows XSS by creating a new file containing a crafted attribute of an IMG element.
Frog Cms Project Frog Cms 0.9.5
578
VMScore
CVE-2018-11098
An issue exists in Frog CMS 0.9.5. There is a file upload vulnerability via the admin/?/plugin/file_manager/upload URI, a similar issue to CVE-2014-4912.
Frog Cms Project Frog Cms 0.9.5
312
VMScore
CVE-2018-9991
Frog CMS 0.9.5 has XSS via the /admin/?/user/add Name or Username parameter.
Frog Cms Project Frog Cms 0.9.5
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »