VYPR

cszcms

by Cszcms.com

CVEs (3)

  • CVE-2021-3224MedMar 10, 2021
    risk 0.35cvss 5.4epss 0.01

    A stored cross-site scripting (XSS) vulnerability in cszcms 1.2.9 exists in /admin/pages/new via the content parameter.

  • CVE-2023-6302MedNov 27, 2023
    risk 0.31cvss 4.7epss 0.01

    A vulnerability was found in CSZCMS 1.3.0 and classified as critical. Affected by this issue is some unknown functionality of the file \views\templates of the component File Manager Page. The manipulation leads to permission issues. The attack may be launched remotely. The…

  • CVE-2023-6303LowNov 27, 2023
    risk 0.16cvss 2.4epss 0.01

    A vulnerability was found in CSZCMS 1.3.0. It has been classified as problematic. This affects an unknown part of the file /admin/settings/ of the component Site Settings Page. The manipulation of the argument Additional Meta Tag with the input <animate onbegin=alert(1)…