CVSS: 6.5EPSS: 1%CPEs: 1EXPL: 2CVE-2021-23837 – flatCore CMS XSS / File Disclosure / SQL Injection
https://notcve.org/view.php?id=CVE-2021-23837
13 Jan 2021 — An issue was discovered in flatCore before 2.0.0 build 139. A time-based blind SQL injection was identified in the selected_folder HTTP request body parameter for the acp interface. The affected parameter (which retrieves the file contents of the specified folder) was found to be accepting malicious user input without proper sanitization, thus leading to SQL injection. Database related information can be successfully retrieved. Se detectó un problema en flatCore versiones anteriores a 2.0.0 build 139. • https://packetstorm.news/files/id/160936 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 2CVE-2021-23836 – flatCore CMS XSS / File Disclosure / SQL Injection
https://notcve.org/view.php?id=CVE-2021-23836
13 Jan 2021 — An issue was discovered in flatCore before 2.0.0 build 139. A stored XSS vulnerability was identified in the prefs_smtp_psw HTTP request body parameter for the acp interface. An admin user can inject malicious client-side script into the affected parameter without any form of input sanitization. The injected payload will be executed in the browser of a user whenever one visits the affected module page. Se detectó un problema en flatCore versiones anteriores a 2.0.0 build 139. • https://packetstorm.news/files/id/160936 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.9EPSS: 1%CPEs: 1EXPL: 2CVE-2021-23835 – flatCore CMS XSS / File Disclosure / SQL Injection
https://notcve.org/view.php?id=CVE-2021-23835
13 Jan 2021 — An issue was discovered in flatCore before 2.0.0 build 139. A local file disclosure vulnerability was identified in the docs_file HTTP request body parameter for the acp interface. This can be exploited with admin access rights. The affected parameter (which retrieves the contents of the specified file) was found to be accepting malicious user input without proper sanitization, thus leading to retrieval of backend server sensitive files, e.g., /etc/passwd, SQLite database files, PHP source code, etc. Se det... • https://packetstorm.news/files/id/160936 • CWE-20: Improper Input Validation •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 2CVE-2021-23838 – flatCore CMS XSS / File Disclosure / SQL Injection
https://notcve.org/view.php?id=CVE-2021-23838
13 Jan 2021 — An issue was discovered in flatCore before 2.0.0 build 139. A reflected XSS vulnerability was identified in the media_filter HTTP request body parameter for the acp interface. The affected parameter accepts malicious client-side script without proper input sanitization. For example, a malicious user can leverage this vulnerability to steal cookies from a victim user and perform a session-hijacking attack, which may then lead to unauthorized access to the site. Se detectó un problema en flatCore versiones an... • https://packetstorm.news/files/id/160936 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 2CVE-2020-17451
https://notcve.org/view.php?id=CVE-2020-17451
09 Aug 2020 — flatCore before 1.5.7 allows XSS by an admin via the acp/acp.php?tn=pages&sub=edit&editpage=1 page_linkname, page_title, page_content, or page_extracontent parameter, or the acp/acp.php?tn=system&sub=sys_pref prefs_pagename, prefs_pagetitle, or prefs_pagesubtitle parameter. flatCore versiones anteriores a 1.5.7, permite un ataque de tipo XSS por parte de un administrador mediante el parámetro page_linkname, page_title, page_content o page_extracontent de acp/acp.php? tn=pages&sub=edit&editpage=1, o ... • https://lists.openwall.net/full-disclosure/2020/08/07/1 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 2CVE-2020-17452
https://notcve.org/view.php?id=CVE-2020-17452
09 Aug 2020 — flatCore before 1.5.7 allows upload and execution of a .php file by an admin. flatCore versiones anteriores a 1.5.7, permite la carga y ejecución de un archivo .php por un administrador • https://lists.openwall.net/full-disclosure/2020/08/07/1 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2019-13961
https://notcve.org/view.php?id=CVE-2019-13961
18 Jul 2019 — A CSRF vulnerability was found in flatCore before 1.5, leading to the upload of arbitrary .php files via acp/core/files.upload-script.php. Se detectó una vulnerabilidad CSRF en flatCore en versiones anteriores a la 1.5, lo que llevó a la carga de archivos .php arbitrarios mediante acp/core/files.upload-script.php. • https://github.com/flatCore/flatCore-CMS/compare/35fee64...de90af3 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-1000428
https://notcve.org/view.php?id=CVE-2017-1000428
10 Jan 2018 — flatCore-CMS 1.4.6 is vulnerable to reflected XSS in user_management.php due to the use of $_SERVER['PHP_SELF'] to build links and a stored XSS in the admin log panel by specifying a malformed User-Agent string. flatCore-CMS 1.4.6 es vulnerable a Cross-Site Scripting (XSS) reflejado en user_management.php debido al uso de $_SERVER['PHP_SELF'] para construir enlaces y XSS persistente en el panel de logs de administrador, especificando una cadena User-Agent mal formada. • https://github.com/flatCore/flatCore-CMS/issues/35 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9451
https://notcve.org/view.php?id=CVE-2017-9451
06 Jun 2017 — Cross site scripting (XSS) vulnerability in pages.edit_form.php in flatCore 1.4.6 allows remote attackers to inject arbitrary JavaScript via the PATH_INFO in an acp.php URL, due to use of unsanitized $_SERVER['PHP_SELF'] to generate URLs. Una vulnerabilidad de tipo Cross site scripting (XSS) en el archivo pages.edit_form.php en flatCore versión 1.4.6, permite a los atacantes remotos inyectar JavaScript arbitrario por medio de PATH_INFO en una URL acp.php, debido al uso de $_SERVER['PHP_SELF'] no saneado par... • https://github.com/flatCore/flatCore-CMS/commit/f1b42b338693a9c240182e76ef2131057f2c2a87 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7879
https://notcve.org/view.php?id=CVE-2017-7879
14 Apr 2017 — SQL Injection vulnerability in flatCore version 1.4.6 allows an attacker to read the content database. La vulnerabilidad de SQL Injection en flatCore versión 1.4.6 permite a un atacante leer la base de datos de contenido. • https://github.com/flatCore/flatCore-CMS/issues/28 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •