Filtered by vendor Laracms Project
Subscribe
Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2020-20131 | 1 Laracms Project | 1 Laracms | 2021-10-02 | 3.5 LOW | 5.4 MEDIUM |
LaraCMS v1.0.1 contains a stored cross-site scripting (XSS) vulnerability which allows atackers to execute arbitrary web scripts or HTML via a crafted payload in the page management module. | |||||
CVE-2020-20129 | 1 Laracms Project | 1 Laracms | 2021-10-02 | 3.5 LOW | 5.4 MEDIUM |
LaraCMS v1.0.1 contains a stored cross-site scripting (XSS) vulnerability which allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the content editor. | |||||
CVE-2020-20128 | 1 Laracms Project | 1 Laracms | 2021-10-02 | 5.0 MEDIUM | 7.5 HIGH |
LaraCMS v1.0.1 transmits sensitive information in cleartext which can be intercepted by attackers. |