Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lavalite vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-27238
LavaLite CMS v 9.0.0 exists to be vulnerable to web cache poisoning.
Lavalite Lavalite 9.0.0
3.5
CVSSv2
CVE-2018-16551
LavaLite 5.5 has XSS via a /edit URI, as demonstrated by client/job/job/Zy8PWBekrJ/edit.
Lavalite Lavalite 5.5.0
3.5
CVSSv2
CVE-2020-28124
Cross Site Scripting (XSS) in LavaLite 5.8.0 via the Address field.
Lavalite Lavalite 5.8.0
3.5
CVSSv2
CVE-2020-23234
Cross Site Scripting (XSS) vulnerabiity exists in LavaLite CMS 5.8.0 via the Menu Blocks feature, which can be bypassed by using HTML event handlers, such as "ontoggle,".
Lavalite Lavalite 5.8.0
NA
CVE-2023-30124
LavaLite v9.0.0 is vulnerable to Cross Site Scripting (XSS).
Lavalite Lavalite 9.0.0
3.5
CVSSv2
CVE-2017-1000467
LavaLite version 5.2.4 is vulnerable to stored cross-site scripting vulnerability, within the blog creation page, which can result in disruption of service and execution of javascript code.
Lavalite Lavalite 5.2.4
NA
CVE-2024-31828
Cross Site Scripting vulnerability in Lavalite CMS v.10.1.0 allows malicious users to execute arbitrary code and obtain sensitive information via a crafted payload to the URL.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2