web content management web content management news system vulnerabilities and exploits

(subscribe to this query)

440

VMScore

Cross-site scripting (XSS) vulnerability in Web Content Management News System allows remote malicious users to inject arbitrary web script or HTML via (1) the strRootpath parameter to validsession.php or (2) the strTable parameter to Admin/News/List.php.

Web Content Management Web Content Management News System

2 EDB exploits

668

VMScore

Web Content Management News System allows remote malicious users to create arbitrary accounts and gain privileges via a direct request to Admin/Users/AddModifyInput.php.

Web Content Management Web Content Management News System

385

VMScore

An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_ce...

5 Github repositories1 Article

312

VMScore

WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. ### Impact The issue allows an authenticated but low-privileged user (like contributor/author) to execute XSS in the editor. This bypasses the restrictions im...

Wordpress Wordpress Debian Debian Linux 10.0 Debian Debian Linux 11.0

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook