Laracms Project: Security Vulnerabilities
LaraCMS v1.0.1 transmits sensitive information in cleartext which can be intercepted by attackers.
CVSS Score
7.5
EPSS Score
0.001
Published
2021-09-29
LaraCMS v1.0.1 contains a stored cross-site scripting (XSS) vulnerability which allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the content editor.
CVSS Score
5.4
EPSS Score
0.003
Published
2021-09-29
LaraCMS v1.0.1 contains a stored cross-site scripting (XSS) vulnerability which allows atackers to execute arbitrary web scripts or HTML via a crafted payload in the page management module.
CVSS Score
5.4
EPSS Score
0.003
Published
2021-09-29