Lucene search
China National Vulnerability DatabaseCNVD-2022-17027HistoryFeb 28, 2022 - 12:00 a.m.
BloofoxCms Cross-Site Scripting Vulnerability (CNVD-2022-17027)
2022-02-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
bloofoxcms
cross-site scripting
vulnerability
php-based
content management system
alexlang24
index.php
client side
javascript code
data validation filtering.
EPSS
0.001
Percentile
24.8%
BloofoxCms is a Php-based text content management system from alexlang24 personal developer. bloofoxCMS suffers from a cross-site scripting vulnerability that stems from the lack of user-supplied data and output data validation filtering in the file and type parameters in index.php. An attacker could exploit this vulnerability to execute JavaScript code on the client side.
Related
nvd
nvd
CVE-2021-44608
2022-02-24 15:15:24
osv
osv
CVE-2021-44608
2022-02-24 15:15:24
cve
cve
CVE-2021-44608
2022-02-24 15:15:24
prion
prion
Cross site scripting
2022-02-24 15:15:00
cvelist
cvelist
CVE-2021-44608
2022-02-23 18:51:04