Webboss.io Cms

webboss.io_cms

Vendor: Webboss • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-39097 1Webboss 1Webboss.io Cms Nov 21, 2024 Aug 3, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 WebBoss.io CMS v3.7.0.1 contains a stored cross-site scripting (XSS) vulnerability.
CVE-2023-39096 1Webboss 1Webboss.io Cms Nov 21, 2024 Aug 3, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 WebBoss.io CMS v3.7.0.1 contains a stored Cross-Site Scripting (XSS) vulnerability due to lack of input validation and output encoding.
CVE-2023-36339 1Webboss 1Webboss.io Cms Nov 21, 2024 Jul 21, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 An access control issue in WebBoss.io CMS v3.7.0.1 allows attackers to access the Website Backup Tool via a crafted GET request.
CVE-2023-37742 1Webboss 1Webboss.io Cms Nov 21, 2024 Jul 21, 2023 N/A· v4 6.1 MEDIUM· v3 N/A· v2 WebBoss.io CMS before v3.7.0.1 was discovered to contain a reflected cross-site scripting (XSS) vulnerability.