Show filters
15 Total Results
Displaying 11-15 of 15
Sort by:
Attacker Value
Unknown

CVE-2018-11572

Disclosure Date: May 31, 2018 (last updated November 26, 2024)
ClipperCMS 1.3.3 has XSS in the "Module name" field in a "Modules -> Manage modules -> edit" action to the manager/ URI.
0
0
Attacker Value
Unknown

CVE-2018-11571

Disclosure Date: May 31, 2018 (last updated November 26, 2024)
ClipperCMS 1.3.3 allows Session Fixation.
0
0
Attacker Value
Unknown

CVE-2018-11332

Disclosure Date: May 24, 2018 (last updated November 26, 2024)
Stored cross-site scripting (XSS) vulnerability in the "Site Name" field found in the "site" tab under configurations in ClipperCMS 1.3.3 allows remote attackers to inject arbitrary web script or HTML via a crafted site name to the manager/processors/save_settings.processor.php file.
0
0
Attacker Value
Unknown

CVE-2015-0870

Disclosure Date: February 01, 2015 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in hb.cgi in Nishishi Factory Fumy News Clipper 2.x before 2.5.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
0
0
Attacker Value
Unknown

CVE-2001-0593

Disclosure Date: August 22, 2001 (last updated February 22, 2025)
Anaconda Partners Clipper 3.3 and earlier allows a remote attacker to read arbitrary files via a '..' (dot dot) attack in the template parameter.
0
0
View More Topics  < Previous