CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-51252

PublicCMS 4.0 is vulnerable to Cross Site Scripting (XSS). Because files can be uploaded and online preview function is provided, pdf files and html files containing malicious code are uploaded, an XSS popup window is realized through online viewing.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.3%

CVSS Severity

CVSS v3 Score 5.4

References

https://github.com/sanluan/PublicCMS/issues/79
https://github.com/sanluan/PublicCMS/issues/79

Products affected by CVE-2023-51252

Publiccms » Publiccms » Version: 4.0

cpe:2.3:a:publiccms:publiccms:4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-51252

Products

Pricing

Contact Us