Show filters
14 Total Results
Displaying 11-14 of 14
Sort by:
Attacker Value
Unknown

CVE-2020-23945

Disclosure Date: October 27, 2020 (last updated February 22, 2025)
A SQL injection vulnerability exists in Victor CMS V1.0 in the cat_id parameter of the category.php file. This parameter can be used by sqlmap to obtain data information in the database.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-15599

Disclosure Date: July 07, 2020 (last updated February 21, 2025)
Victor CMS through 2019-02-28 allows XSS via the register.php user_firstname or user_lastname field.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2018-16775

Disclosure Date: September 10, 2018 (last updated November 27, 2024)
An issue was discovered in Victor CMS through 2018-05-10. There is XSS via the site name in the "Categories" menu.
0
0
Attacker Value
Unknown

CVE-2018-15603

Disclosure Date: August 21, 2018 (last updated November 27, 2024)
An issue was discovered in Victor CMS through 2018-05-10. There is XSS via the Author field of the "Leave a Comment" screen.
0
0
View More Topics  < Previous