Saurus Cms vulnerabilities
3 known vulnerabilities affecting saurus/saurus_cms.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM2LOW1
Vulnerabilities
Page 1 of 1
CVE-2010-1997P4LOWCVSS 2.1PoCv4.7.02010-05-20
CVE-2010-1997 [LOW] CWE-79 CVE-2010-1997: Cross-site scripting (XSS) vulnerability in admin/edit.php in Saurus CMS 4.7.0 allows remote authent
Cross-site scripting (XSS) vulnerability in admin/edit.php in Saurus CMS 4.7.0 allows remote authenticated users, with "Article list" edit privileges, to inject arbitrary web script or HTML via the pealkiri parameter.
nvd
CVE-2015-1562P4MEDIUMCVSS 4.3v4.7.02015-02-09
CVE-2015-1562 [MEDIUM] CWE-79 CVE-2015-1562: Multiple cross-site scripting (XSS) vulnerabilities in Saurus CMS 4.7.0 allow remote attackers to in
Multiple cross-site scripting (XSS) vulnerabilities in Saurus CMS 4.7.0 allow remote attackers to inject arbitrary web script or HTML via the (1) search parameter to admin/user_management.php, (2) data_search parameter to /admin/profile_data.php, or (3) filter parameter to error_log.php.
nvd
CVE-2015-0876P4MEDIUMCVSS 4.3≤ 4.7.02015-04-07
CVE-2015-0876 [MEDIUM] CWE-79 CVE-2015-0876: Multiple cross-site scripting (XSS) vulnerabilities in the print_language_selectbox function in clas
Multiple cross-site scripting (XSS) vulnerabilities in the print_language_selectbox function in classes/adminpage.inc.php in Saurus CMS Community Edition before 4.7 2015-02-04 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
nvd