Filtered by vendor Compo
Subscriptions
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-38709 | 1 Compo | 1 Composr Cms | 2021-08-24 | 6.1 Medium |
| In ocProducts Composr CMS before 10.0.38, an attacker can inject JavaScript via the staff_messaging messaging system for XSS. | ||||
| CVE-2021-38708 | 1 Compo | 1 Composr Cms | 2021-08-23 | 5.4 Medium |
| In ocProducts Composr CMS before 10.0.38, an attacker can inject JavaScript via Comcode for XSS. | ||||
| CVE-2018-6518 | 1 Compo | 1 Composr Cms | 2018-05-25 | N/A |
| Composr CMS 10.0.13 has XSS via the site_name parameter in a page=admin-setupwizard&type=step3 request to /adminzone/index.php. | ||||
Page 1 of 1.