Lucene search
Sunlight Cms Security Vulnerabilities
cve
Cross Site Scripting (XSS) vulnerability in Sunlight CMS v.8.0.1, allows remote authenticated attackers to execute arbitrary code and escalate privileges via a crafted script to the Content text editor component.
5.4CVSS
5.4AI Score
0.001EPSS
2024-01-27 06:15 AM
13
cve
Cross-Site Scripting (XSS) vulnerability in Sunlight CMS 8.0.1 allows an authenticated low-privileged user to escalate privileges via a crafted SVG file in the File Manager component.
5.4CVSS
5.3AI Score
0.0004EPSS
2024-01-27 06:15 AM
15