Websitebaker - Websitebaker CVE

Filtered by vendor Websitebaker Subscribe

Filtered by product Websitebaker

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2017-16514	1 Websitebaker	1 Websitebaker	2018-02-01	4.3 MEDIUM	6.1 MEDIUM
Multiple persistent stored Cross-Site-Scripting (XSS) vulnerabilities in the files /wb/admin/admintools/tool.php (Droplet Description) and /install/index.php (Site Title) in WebsiteBaker 2.10.0 allow attackers to insert persistent JavaScript code that gets reflected back to users in multiple areas in the application.
CVE-2017-9361	1 Websitebaker	1 Websitebaker	2017-06-06	4.3 MEDIUM	6.1 MEDIUM
WebsiteBaker v2.10.0 has a stored XSS vulnerability in /account/details.php.

Vulnerabilities (CVE)