frog cms project
Web & CMS Pluginsoss-project
Top products
Latest CVEs
The 15 most recently published vulnerabilities affecting frog cms project.
- CVE-2019-1010235Frog CMS 1.1 is affected by: Cross Site Scripting (XSS). The impact is: Cookie stealing, Alert pop-up on page, Redirecting to another phishing site, Executing browser exploits. The component is: Sn...5.4
- CVE-2018-20778admin/?/plugin/file_manager in Frog CMS 0.9.5 allows XSS by creating a new file containing a crafted attribute of an IMG element.6.1
- CVE-2018-20777Frog CMS 0.9.5 has XSS via the admin/?/snippet/edit/1 Body field.5.4
- CVE-2018-20776Frog CMS 0.9.5 provides a directory listing for a /public request.7.5
- CVE-2018-20775admin/?/plugin/file_manager in Frog CMS 0.9.5 allows PHP code execution by creating a new .php file containing PHP code, and then visiting this file under the public/ URI.7.2
- CVE-2018-20774Frog CMS 0.9.5 has XSS via the admin/?/layout/edit/1 Body field.5.4
- CVE-2018-20773Frog CMS 0.9.5 allows PHP code execution by visiting admin/?/page/edit/1 and inserting additional <?php lines.7.2
- CVE-2018-20772Frog CMS 0.9.5 allows PHP code execution via <?php to the admin/?/layout/edit/1 URI.7.2
- CVE-2019-6243Frog CMS 0.9.5 allows XSS via the forgot password page (aka the /admin/?/login/forgot URI).6.1
- CVE-2018-20680Frog CMS 0.9.5 has XSS in the admin/?/page/edit/1 body field.4.8
- CVE-2018-20448Frog CMS 0.9.5 has XSS via the Database name field to the /install/index.php URI.5.4
- CVE-2018-16374Frog CMS 0.9.5 has stored XSS via /admin/?/plugin/comment/settings.4.8
- CVE-2018-16373Frog CMS 0.9.5 has an Upload vulnerability that can create files via /admin/?/plugin/file_manager/save.4.9
- CVE-2018-11098An issue was discovered in Frog CMS 0.9.5. There is a file upload vulnerability via the admin/?/plugin/file_manager/upload URI, a similar issue to CVE-2014-4912.7.2
- CVE-2018-9992Frog CMS 0.9.5 has XSS via the name field of a new "File" or "Directory" on the admin/?/plugin/file_manager/browse/ screen.4.8