Vulnerabilities > Cszcms > Low

DATE CVE VULNERABILITY TITLE RISK
2021-07-09 CVE-2020-25392 Cross-site Scripting vulnerability in Cszcms CSZ CMS 1.2.9
A cross site scripting (XSS) vulnerability in CSZ CMS 1.2.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the 'New Article' field under the 'Article' plugin.
network
cszcms CWE-79
3.5
2021-07-09 CVE-2020-25391 Cross-site Scripting vulnerability in Cszcms CSZ CMS 1.2.9
A cross site scripting vulnerability in CSZ CMS 1.2.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the 'New Pages' field under the 'Pages Content' module.
network
cszcms CWE-79
3.5
2021-03-11 CVE-2021-26776 Cross-site Scripting vulnerability in Cszcms CSZ CMS 1.2.9
CSZ CMS 1.2.9 is affected by a cross-site scripting (XSS) vulnerability in multiple pages through the field name.
network
cszcms CWE-79
3.5
2021-03-10 CVE-2021-3224 Cross-site Scripting vulnerability in Cszcms CSZ CMS 1.2.9
A stored cross-site scripting (XSS) vulnerability in cszcms 1.2.9 exists in /admin/pages/new via the content parameter.
network
cszcms CWE-79
3.5