Количество 2
Количество 2
CVE-2024-37160
Formwork is a flat file-based Content Management System (CMS). An attackers (requires administrator privilege) to execute arbitrary web scripts by modifying site options via /panel/options/site. This type of attack is suitable for persistence, affecting visitors across all pages (except the dashboard). This vulnerability is fixed in 1.13.1.
GHSA-5pxr-7m4j-jjc6
Cross-site scripting (XSS) vulnerability in Description metadata
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-37160 Formwork is a flat file-based Content Management System (CMS). An attackers (requires administrator privilege) to execute arbitrary web scripts by modifying site options via /panel/options/site. This type of attack is suitable for persistence, affecting visitors across all pages (except the dashboard). This vulnerability is fixed in 1.13.1. | CVSS3: 4.8 | 1% Низкий | больше 1 года назад |
| GHSA-5pxr-7m4j-jjc6 Cross-site scripting (XSS) vulnerability in Description metadata | CVSS3: 4.8 | 1% Низкий | больше 1 года назад |
Уязвимостей на страницу