VYPR

Webasyst

by Shop Script

CVEs (2)

  • CVE-2024-29413MedApr 3, 2024
    risk 0.35cvss 5.4epss 0.00

    Cross Site Scripting vulnerability in Webasyst v.2.9.9 allows a remote attacker to run arbitrary code via the Instant messenger field in the Contact info function.

  • CVE-2024-27517Feb 28, 2024
    risk 0.00cvss epss 0.00

    Webasyst 2.9.9 has a Cross-Site Scripting (XSS) vulnerability, Attackers can create blogs containing malicious code after gaining blog permissions.