CVE List

Id CVE No. Status Description Phase Votes Comments Actions
102889  CVE-2017-6069  Candidate  Subrion CMS 4.0.5 has CSRF in admin/blog/add/. The attacker can add any tag, and can optionally insert XSS via the tags parameter.  Assigned (20170217)  None (candidate not yet proposed)    View
102890  CVE-2017-6070  Candidate  CMS Made Simple version 1.x Form Builder before version 0.8.1.6 allows remote attackers to execute PHP code via the cntnt01fbrp_forma_form_template parameter in admin_store_form.  Assigned (20170217)  None (candidate not yet proposed)    View
102891  CVE-2017-6071  Candidate  CMS Made Simple version 1.x Form Builder before version 0.8.1.6 allows remote attackers to conduct information-disclosure attacks via exportxml.  Assigned (20170217)  None (candidate not yet proposed)    View
102892  CVE-2017-6072  Candidate  CMS Made Simple version 1.x Form Builder before version 0.8.1.6 allows remote attackers to conduct information-disclosure attacks via defaultadmin.  Assigned (20170217)  None (candidate not yet proposed)    View
102893  CVE-2017-6073  Candidate  ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.  Assigned (20170217)  None (candidate not yet proposed)    View

Page 19961 of 20943, showing 5 records out of 104715 total, starting on record 99801, ending on 99805

Actions