CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Blackcat-Cms: >> Blackcat Cms >> 1.3 Security Vulnerabilities

CVE-2020-25453

An issue was discovered in BlackCat CMS before 1.4. There is a CSRF vulnerability (bypass csrf_token) that allows remote arbitrary code execution.

CVSS Score

8.8

EPSS Score

0.004

Published

2020-09-15

CVE-2018-10821

Cross-site scripting (XSS) vulnerability in backend/pages/modify.php in BlackCatCMS 1.3 allows remote authenticated users with the Admin role to inject arbitrary web script or HTML via the search panel.

CVSS Score

4.8

EPSS Score

0.002

Published

2018-06-14

Page 1

Vulnerabilities

Vulnerable Software

Blackcat-Cms: >> Blackcat Cms >> 1.3 Security Vulnerabilities

Products

Pricing

Contact Us