Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown

CVE-2018-17423

Disclosure Date: June 19, 2019 (last updated November 27, 2024)
An issue was discovered in e107 v2.1.9. There is a XSS attack on e107_admin/comment.php.
0
0
Attacker Value
Unknown

CVE-2018-17081

Disclosure Date: September 26, 2018 (last updated November 27, 2024)
e107 2.1.9 allows CSRF via e107_admin/wmessage.php?mode=&action=inline&ajax_used=1&id= for changing the title of an arbitrary page.
0
0