Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Galileo Cms Project Subscribe
Filtered by product Galileo Cms
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-7410 1 Galileo Cms Project 1 Galileo Cms 2020-08-19 4.3 MEDIUM 6.1 MEDIUM
There is stored cross site scripting (XSS) in Galileo CMS v0.042. Remote authenticated users could inject arbitrary web script or HTML via $page_title in /lib/Galileo/files/templates/page/show.html.ep (aka the PAGE TITLE Field).