Количество 2
Количество 2
CVE-2025-27412
11 месяцев назад
REDAXO is a PHP-based CMS. In Redaxo from 5.0.0 through 5.18.2, the rex-api-result parameter is vulnerable to Reflected cross-site scripting (XSS) on the page of AddOns. This vulnerability is fixed in 5.18.3.
CVSS3: 6.1
EPSS: Низкий
GHSA-8366-xmgf-334f
11 месяцев назад
REDAXO allows Authenticated Reflected Cross Site Scripting - packages installation
CVSS3: 6.1
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-27412 REDAXO is a PHP-based CMS. In Redaxo from 5.0.0 through 5.18.2, the rex-api-result parameter is vulnerable to Reflected cross-site scripting (XSS) on the page of AddOns. This vulnerability is fixed in 5.18.3. | CVSS3: 6.1 | 0% Низкий | 11 месяцев назад |
| GHSA-8366-xmgf-334f REDAXO allows Authenticated Reflected Cross Site Scripting - packages installation | CVSS3: 6.1 | 0% Низкий | 11 месяцев назад |
Уязвимостей на страницу
20