Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
3.5
CVSSv2

CVE-2018-8815

Published: 20/03/2018 Updated: 13/04/2018
CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8
CVSS v3 Base Score: 4.6 | Impact Score: 2.5 | Exploitability Score: 2.1
VMScore: 355
Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N
Subscribe to Alkacon

Vulnerability Summary

Cross-site scripting (XSS) vulnerability in the gallery function in Alkacon OpenCMS 10.5.3 allows remote malicious users to inject arbitrary web script or HTML via a malicious SVG image.

Vulnerable Product Search on Vulmon Subscribe to Product

alkacon opencms 10.5.3

Exploits

Exploit DB: OpenCMS 10.5.3 - Cross-Site Scripting
# Exploit Title: OpenCMS 1053 Stored Cross Site Scripting Vulnerability # Google Dork: N/A # Date: 02-04-2018 ####################################### # Exploit Author: Sureshbabu Narvaneni # Author Blog : nullnewsin # Vendor Homepage: wwwopencmsorg/en/ # Software Link: wwwopencmsorg/en/modules/downloads/begindownloadhtm ...
Exploit DB: OpenCMS 10.5.3 Cross Site Scripting
OpenCMS version 1053 suffers from a cross site scripting vulnerability ...

References

CWE-79https://github.com/alkacon/opencms-core/issues/587https://www.exploit-db.com/exploits/44392/https://nvd.nist.govhttps://www.exploit-db.com/exploits/44392/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race conditionCVE-2024-4249CVE-2024-4244CVE-2023-20198TCPCVE-2022-48648CVE-2022-48636CVE-2024-21345SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook