Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
frog cms project vulnerabilities and exploits
(subscribe to this query)
312
VMScore
CVE-2019-1010235
Frog CMS 1.1 is affected by: Cross Site Scripting (XSS). The impact is: Cookie stealing, Alert pop-up on page, Redirecting to another phishing site, Executing browser exploits. The component is: Snippets.
Frog Cms Project Frog Cms 1.1
685
VMScore
CVE-2018-8908
An issue exists in /admin/?/user/add in Frog CMS 0.9.5. The application's add user functionality suffers from CSRF. A malicious user can craft an HTML page and use it to trick a victim into clicking on it; once executed, a malicious user will be created with admin privileges...
Frog Cms Project Frog Cms 0.9.5
1 EDB exploit
312
VMScore
CVE-2018-20448
Frog CMS 0.9.5 has XSS via the Database name field to the /install/index.php URI.
Frog Cms Project Frog Cms 0.9.5
312
VMScore
CVE-2018-16374
Frog CMS 0.9.5 has stored XSS via /admin/?/plugin/comment/settings.
Frog Cms Project Frog Cms 0.9.5
755
VMScore
CVE-2014-4912
An Arbitrary File Upload issue exists in Frog CMS 0.9.5 due to lack of extension validation.
Frog Cms Project Frog Cms 0.9.5
1 EDB exploit
383
VMScore
CVE-2019-6243
Frog CMS 0.9.5 allows XSS via the forgot password page (aka the /admin/?/login/forgot URI).
Frog Cms Project Frog Cms 0.9.5
312
VMScore
CVE-2018-9991
Frog CMS 0.9.5 has XSS via the /admin/?/user/add Name or Username parameter.
Frog Cms Project Frog Cms 0.9.5
312
VMScore
CVE-2018-9992
Frog CMS 0.9.5 has XSS via the name field of a new "File" or "Directory" on the admin/?/plugin/file_manager/browse/ screen.
Frog Cms Project Frog Cms 0.9.5
355
VMScore
CVE-2018-10321
Frog CMS 0.9.5 has a stored Cross Site Scripting Vulnerability via "Admin Site title" in Settings.
Frogcms Project Frogcms 0.9.5
1 EDB exploit
605
VMScore
CVE-2018-16447
Frog CMS 0.9.5 has admin/?/user/edit/1 CSRF.
Frogcms Project Frogcms 0.9.5
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »