Filtered by vendor Frog Cms Project
Subscribe
Search
Total
11 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2019-1010235 | 1 Frog Cms Project | 1 Frog Cms | 2019-07-23 | 3.5 LOW | 5.4 MEDIUM |
| Frog CMS 1.1 is affected by: Cross Site Scripting (XSS). The impact is: Cookie stealing, Alert pop-up on page, Redirecting to another phishing site, Executing browser exploits. The component is: Snippets. | |||||
| CVE-2018-20448 | 1 Frog Cms Project | 1 Frog Cms | 2019-03-04 | 3.5 LOW | 5.4 MEDIUM |
| Frog CMS 0.9.5 has XSS via the Database name field to the /install/index.php URI. | |||||
| CVE-2018-20778 | 1 Frog Cms Project | 1 Frog Cms | 2019-02-11 | 4.3 MEDIUM | 6.1 MEDIUM |
| admin/?/plugin/file_manager in Frog CMS 0.9.5 allows XSS by creating a new file containing a crafted attribute of an IMG element. | |||||
| CVE-2018-20774 | 1 Frog Cms Project | 1 Frog Cms | 2019-02-11 | 3.5 LOW | 5.4 MEDIUM |
| Frog CMS 0.9.5 has XSS via the admin/?/layout/edit/1 Body field. | |||||
| CVE-2018-20777 | 1 Frog Cms Project | 1 Frog Cms | 2019-02-11 | 3.5 LOW | 5.4 MEDIUM |
| Frog CMS 0.9.5 has XSS via the admin/?/snippet/edit/1 Body field. | |||||
| CVE-2019-6243 | 1 Frog Cms Project | 1 Frog Cms | 2019-01-16 | 4.3 MEDIUM | 6.1 MEDIUM |
| Frog CMS 0.9.5 allows XSS via the forgot password page (aka the /admin/?/login/forgot URI). | |||||
| CVE-2018-20680 | 1 Frog Cms Project | 1 Frog Cms | 2019-01-11 | 3.5 LOW | 4.8 MEDIUM |
| Frog CMS 0.9.5 has XSS in the admin/?/page/edit/1 body field. | |||||
| CVE-2018-16373 | 1 Frog Cms Project | 1 Frog Cms | 2018-10-25 | 4.0 MEDIUM | 4.9 MEDIUM |
| Frog CMS 0.9.5 has an Upload vulnerability that can create files via /admin/?/plugin/file_manager/save. | |||||
| CVE-2018-16374 | 1 Frog Cms Project | 1 Frog Cms | 2018-10-24 | 3.5 LOW | 4.8 MEDIUM |
| Frog CMS 0.9.5 has stored XSS via /admin/?/plugin/comment/settings. | |||||
| CVE-2018-9992 | 1 Frog Cms Project | 1 Frog Cms | 2018-05-11 | 3.5 LOW | 4.8 MEDIUM |
| Frog CMS 0.9.5 has XSS via the name field of a new "File" or "Directory" on the admin/?/plugin/file_manager/browse/ screen. | |||||
| CVE-2018-9991 | 1 Frog Cms Project | 1 Frog Cms | 2018-05-11 | 3.5 LOW | 4.8 MEDIUM |
| Frog CMS 0.9.5 has XSS via the /admin/?/user/add Name or Username parameter. | |||||