maccms8 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Server Group text field.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-06-21
maccms10 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Server Group text field.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-06-21
Cross Site Scripting (XSS) vulnerability exists in Maccms v10 via link_Name parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-03-31
Maccms v10 was discovered to contain a reflected cross-site scripting (XSS) vulnerability in /admin.php/admin/plog/index.html via the wd parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-03-25
Maccms v10 was discovered to contain multiple reflected cross-site scripting (XSS) vulnerabilities in /admin.php/admin/website/data.html via the select and input parameters.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-03-25
Maccms v10 was discovered to contain a reflected cross-site scripting (XSS) vulnerability in /admin.php/admin/ulog/index.html via the wd parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-03-25
Maccms v10 was discovered to contain a reflected cross-site scripting (XSS) vulnerability in /admin.php/admin/vod/data.html via the repeat parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-03-25
Maccms v10 was discovered to contain multiple reflected cross-site scripting (XSS) vulnerabilities in /admin.php/admin/art/data.html via the select and input parameters.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-03-25
In maccms v10, an attacker can log in through /index.php/user/login in the "col" and "openid" parameters to gain privileges.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-03-16
There is a stored Cross Site Scripting (XSS) vulnerability in maccms v10 through adding videos. XSS code can be inserted at parameter positions including name and remarks.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-03-16