Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
frog cms project vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2018-11098
An issue exists in Frog CMS 0.9.5. There is a file upload vulnerability via the admin/?/plugin/file_manager/upload URI, a similar issue to CVE-2014-4912.
Frog Cms Project Frog Cms 0.9.5
4.9
CVSSv3
CVE-2018-16373
Frog CMS 0.9.5 has an Upload vulnerability that can create files via /admin/?/plugin/file_manager/save.
Frog Cms Project Frog Cms 0.9.5
1 Github repository
4.8
CVSSv3
CVE-2018-16374
Frog CMS 0.9.5 has stored XSS via /admin/?/plugin/comment/settings.
Frog Cms Project Frog Cms 0.9.5
9.8
CVSSv3
CVE-2014-4912
An Arbitrary File Upload issue exists in Frog CMS 0.9.5 due to lack of extension validation.
Frog Cms Project Frog Cms 0.9.5
1 EDB exploit
4.8
CVSSv3
CVE-2018-9992
Frog CMS 0.9.5 has XSS via the name field of a new "File" or "Directory" on the admin/?/plugin/file_manager/browse/ screen.
Frog Cms Project Frog Cms 0.9.5
6.1
CVSSv3
CVE-2019-6243
Frog CMS 0.9.5 allows XSS via the forgot password page (aka the /admin/?/login/forgot URI).
Frog Cms Project Frog Cms 0.9.5
5.4
CVSSv3
CVE-2019-1010235
Frog CMS 1.1 is affected by: Cross Site Scripting (XSS). The impact is: Cookie stealing, Alert pop-up on page, Redirecting to another phishing site, Executing browser exploits. The component is: Snippets.
Frog Cms Project Frog Cms 1.1
7.2
CVSSv3
CVE-2018-20772
Frog CMS 0.9.5 allows PHP code execution via <?php to the admin/?/layout/edit/1 URI.
Frog Cms Project Frog Cms 0.9.5
7.2
CVSSv3
CVE-2018-20773
Frog CMS 0.9.5 allows PHP code execution by visiting admin/?/page/edit/1 and inserting additional <?php lines.
Frog Cms Project Frog Cms 0.9.5
5.4
CVSSv3
CVE-2018-20774
Frog CMS 0.9.5 has XSS via the admin/?/layout/edit/1 Body field.
Frog Cms Project Frog Cms 0.9.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »