Vulnerabilities > Cszcms > CSZ CMS > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-09 | CVE-2020-25392 | Cross-site Scripting vulnerability in Cszcms CSZ CMS 1.2.9 A cross site scripting (XSS) vulnerability in CSZ CMS 1.2.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the 'New Article' field under the 'Article' plugin. | 3.5 |
| 2021-07-09 | CVE-2020-25391 | Cross-site Scripting vulnerability in Cszcms CSZ CMS 1.2.9 A cross site scripting vulnerability in CSZ CMS 1.2.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the 'New Pages' field under the 'Pages Content' module. | 3.5 |
| 2021-03-11 | CVE-2021-26776 | Cross-site Scripting vulnerability in Cszcms CSZ CMS 1.2.9 CSZ CMS 1.2.9 is affected by a cross-site scripting (XSS) vulnerability in multiple pages through the field name. | 3.5 |
| 2021-03-10 | CVE-2021-3224 | Cross-site Scripting vulnerability in Cszcms CSZ CMS 1.2.9 A stored cross-site scripting (XSS) vulnerability in cszcms 1.2.9 exists in /admin/pages/new via the content parameter. | 3.5 |