Cross Site Scripting vulnerability in Maxsite CMS v.108.7 allows a remote attacker to execute arbitrary code via the f_content parameter in the admin/page_new...
6.1CVSS
6.4AI Score
0.001EPSS
A Remote Code Execution (RCE) vulnerability at /admin/options in Maxsite CMS v180 allows attackers to execute arbitrary code via a crafted PHP...
9.8CVSS
9.7AI Score
0.005EPSS
Maxsite CMS v108 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the parameter f_tags at...
5.4CVSS
5.3AI Score
0.001EPSS
Maxsite CMS v180 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the parameter f_file_description at...
5.4CVSS
5.3AI Score
0.001EPSS
Maxsite CMS v180 was discovered to contain multiple arbitrary file deletion vulnerabilities in /admin_page/all-files-update-ajax.php via the dir and deletefile...
8.1CVSS
8.3AI Score
0.001EPSS
Remote Code Execution (RCE) vulnerability exists in MaxSite CMS v107.5 via the Documents...
9.8CVSS
9.6AI Score
0.007EPSS
A reflected cross-site scripting (XSS) vulnerability in MaxSite CMS before V106 via product/page/* allows remote attackers to inject arbitrary web script to a...
6.1CVSS
5.9AI Score
0.001EPSS
Static code injection vulnerability in the Guestbook component in CMS MAXSITE allows remote attackers to inject arbitrary PHP code into the guestbook via the message...
7.5AI Score
0.012EPSS