Количество 3
Количество 3
CVE-2023-51252
PublicCMS 4.0 is vulnerable to Cross Site Scripting (XSS). Because files can be uploaded and online preview function is provided, pdf files and html files containing malicious code are uploaded, an XSS popup window is realized through online viewing.
GHSA-hfr8-9v95-p75f
PublicCMS 4.0 is vulnerable to Cross Site Scripting (XSS). Because files can be uploaded and online preview function is provided, pdf files and html files containing malicious code are uploaded, an XSS popup window is realized through online viewing.
BDU:2024-01139
Уязвимость компонента Online Preview CMS-системы PublicCMS, позволяющая нарушителю проводить межсайтовые сценарные атаки
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-51252 PublicCMS 4.0 is vulnerable to Cross Site Scripting (XSS). Because files can be uploaded and online preview function is provided, pdf files and html files containing malicious code are uploaded, an XSS popup window is realized through online viewing. | CVSS3: 5.4 | 0% Низкий | около 2 лет назад |
| GHSA-hfr8-9v95-p75f PublicCMS 4.0 is vulnerable to Cross Site Scripting (XSS). Because files can be uploaded and online preview function is provided, pdf files and html files containing malicious code are uploaded, an XSS popup window is realized through online viewing. | CVSS3: 5.4 | 0% Низкий | около 2 лет назад |
 | BDU:2024-01139 Уязвимость компонента Online Preview CMS-системы PublicCMS, позволяющая нарушителю проводить межсайтовые сценарные атаки | CVSS3: 5.4 | 0% Низкий | около 2 лет назад |
Уязвимостей на страницу