Typesetter CMS version 5.1 suffers from a persistent cross site scripting vulnerability.
>> ARCHIVE: 2020-10
WebsiteBaker version 2.12.2 suffers from an authenticated remote SQL injection vulnerability.
SpinetiX Fusion Digital Signage versions 3.4.8 and below suffer from a username enumeration vulnerability.
MonoCMS Blog version 1.0 suffers from arbitrary file deletion, cross site request forgery, and information disclosure vulnerabilities.
SpinetiX Fusion Digital Signage version 3.4.8 suffers from a cross site request forgery vulnerability.
GetSimple CMS version 3.3.16 suffers from a persistent cross site scripting vulnerability.
CMS Made Simple version 2.2.14 suffers from a persistent cross site scripting vulnerability.
SpinetiX Fusion Digital Signage version 3.4.8 suffers from a database backup disclosure vulnerability.
SpinetiX Fusion Digital Signage version 3.4.8 suffers from an authenticated path traversal vulnerability. Input passed via several parameters in index.php script is not properly verified before being used to create…
BrightSign Digital Signage Diagnostic Web Server version 8.2.26 suffers from an unauthenticated server-side request forgery vulnerability.