NotCVE - vendor:"Frog Cms Project" product:"Frog Cms" version:"0.9.5"

Page 2 of 17 results (0.005 seconds)

CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1

CVE-2018-20777

https://notcve.org/view.php?id=CVE-2018-20777

Frog CMS 0.9.5 has XSS via the admin/?/snippet/edit/1 Body field. Frog CMS 0.9.5 tiene Cross-Site Scripting (XSS) mediante el campo Body en admin/?/snippet/edit/1. • https://github.com/philippe/FrogCMS/issues/25 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1

CVE-2018-20773

https://notcve.org/view.php?id=CVE-2018-20773

Frog CMS 0.9.5 allows PHP code execution by visiting admin/?/page/edit/1 and inserting additional <?php lines. Frog CMS 0.9.5 permite la ejecución de código PHP visitando admin/?/page/edit/1 e insertando líneas • https://github.com/philippe/FrogCMS/issues/23 • CWE-94: Improper Control of Generation of Code ('Code Injection') •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1

CVE-2019-6243

https://notcve.org/view.php?id=CVE-2019-6243

Frog CMS 0.9.5 allows XSS via the forgot password page (aka the /admin/?/login/forgot URI). Frog CMS 0.9.5 permite Cross-Site Scripting (XSS) mediante la página de contraseña olvidada (URI /admin/?/login/forgot). • https://somerandomshitwbu.blogspot.com/2019/01/another-xss-on-frog-cms-open-source.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1

CVE-2018-20680

https://notcve.org/view.php?id=CVE-2018-20680

Frog CMS 0.9.5 has XSS in the admin/?/page/edit/1 body field. Frog CMS 0.9.5 tiene Cross-Site Scripting (XSS) en el campo del cuerpo en admin/?/page/edit/1. • https://github.com/philippe/FrogCMS/issues/22 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 2

CVE-2018-20448 – Frog CMS 0.9.5 - Cross-Site Scripting

https://notcve.org/view.php?id=CVE-2018-20448

Frog CMS 0.9.5 has XSS via the Database name field to the /install/index.php URI. Frog CMS 0.9.5 tiene Cross-Site Scripting (XSS) mediante el nombre del campo Database en el URI /install/index.php. Frog CMS version 0.9.5 suffers from a cross site scripting vulnerability. • https://www.exploit-db.com/exploits/46067 https://github.com/philippe/FrogCMS/issues/20 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

1 2 3 4